Hi all,
I enabled security with LDAP in TWS which works fine. Now I want to give access rights to make the server secure.
By default all users have any access right.
I understand that this is due to an entry in domain.xml.
However I cannot remove that entry since nobody can give access rights anymore then.
Removing the “all” rigth via an ACL call for a particular user on /taminowebdavserver has no effect at all.
So I decided to remove the “all” right on
/taminowebdavserver/administration
/taminowebdavserver/files
/taminowebdavserver/history
/taminowebdavserver/workingresources
/taminowebdavserver/workspace
and give “all” right to
/taminowebdavserver/files/resources
However since I have auto-versioning enabled the user is unable to write something into resources as long he doesn’t have write rights on
/taminowebdavserver/history
Is it possible to somehow protect
/taminowebdavserver/history
from unauthorized access?
Another question I have is:
Is it possible to delete old versions of a resource?
I believe the WebDAV specification doesn’t allow that. But is it somehow possible?
TIA
Guido
answering myself:
This could be solved via httpd.conf (hope this works)
Guido
Hello,
I have activated security using the latest 4.1.4 software.
As Guido points out “Removing the “all” rigth via an ACL call for a particular user on /taminowebdavserver has no effect at all”.
It seems that there are currently just two security states for some resource:
1. Grant all rights to all users
2. Deny all rights to all users
Could you point out, please, when we may expect more fine grained access rights.
Thanks,
Roland Betz