2021 September Release

access control list templatesPermanent link for this heading

By using an existing access control list as template it is much simpler to create a new acess control list. The template is listed after the name of the new access control list and a colon as separator.

The new access control list is initialized by copiing all access control entries of the template. Using the keywords add, delete and replace the list of access control entries can be modified, using the audience as key:

  • add: add new access control entries
  • delete: delete the specified access control entries
  • replace: replace the specified access control entries by the new list of rights.   

Example

orgmodel APPDUCXSAMPLE@200.200
{
  import COOSYSTEM@1.1;

  acl NewDeveloperACL : DefaultDeveloperACL {
    add ace {
      audience {
        user = SyAdm;
      }
      rights = [AccTypeRead, AccTypeChange];
    }
    delete ace {
      audience {
        user = ACLUSER_NORMAL;
      }
    }
    replace ace {
      audience {
        user = ACLUSER_OWNERL;
      }
      rights = [AccTypeRead, AccTypeChange, AccTypeReadSec, AccTypeChangeSec];
    }
  }
}