Download the PHP package oat-sa/extension-tao-dac-simple without Composer
On this page you can find all versions of the php package oat-sa/extension-tao-dac-simple. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Download oat-sa/extension-tao-dac-simple
More information about oat-sa/extension-tao-dac-simple
Files in oat-sa/extension-tao-dac-simple
Package extension-tao-dac-simple
Short Description extension that allows admin to give access to some resources to other people
License GPL-2.0-only
Homepage http://www.taotesting.com
FAQ
Example:
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
- Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
- To use Composer is sometimes complicated. Especially for beginners.
- Composer needs much resources. Sometimes they are not available on a simple webspace.
- If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
- Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.
Informations about the package extension-tao-dac-simple
Simple Data Access Control
Simple Data Access Control allows the restriction of which user can access which resources, in the way compatible with Advanced Search.
Access Privileges are granted either to users directly or to roles, applying to all users who have that specific role.
Privileges are given per resource, so that in order to remove the write access to all items within a class, the new access rights need to be applied recursively to all resources by checking "recursive" before saving the changes.
Privileges are additive, meaning that if:
- Role A has write and read access to Item 1
- User X has read access to Item 1
- And User X has the Role A
Then User X he will have read and write access to Item 1
How to enable ACL management
In order to see the Access control button on the backoffice panel a few changes are necessary.
Enable this in the actions
Change the actions/structures.xml file by adding the attribute allowClassActions="true" in the actions node:
Enable ACL in an endpoint
Add the annotation requiresRight with proper field and grant level to check permissions:
Checking ACL internally (without annotations) in the endpoint
If extending tao_actions_RdfController we can use the method hasWriteAccess:
Or we can use the DataAccessControl implementation directly:
Permissions save strategies
Currently, we have the following saving/propagating permissions strategies:
- SyncPermissionsStrategy (Default): Overwrites existent permissions with the new ones provided by the user.
- SavePermissionsStrategy: Merges existing permissions with the new ones provided by the user.
IMPORTANT: Saving with recursive option is very dangerous, cause will override permissions for all subclasses and resources.
The permission strategy is configured here config/taoDacSimple/PermissionsService.conf.php. Example:
Environment variables
| Variable | Description | Default value | Values |
|---|---|---|---|
| ACL_TRANSFER_MODE | Set the preferable transfer mode | acl.use.destination |
acl.use.destinationacl.keep.original |
All versions of extension-tao-dac-simple with dependencies
oat-sa/generis Version >=16.0.0
oat-sa/tao-core Version >=54.29.1
oat-sa/extension-tao-backoffice Version >=7.0.1
oat-sa/extension-tao-item Version >=11.3