[jackrabbit-oak] branch trunk updated: OAK-9834 : clarify node names of ACL nodes (#610)

[kw...@apache.org]

This is an automated email from the ASF dual-hosted git repository.

kwin pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/jackrabbit-oak.git


The following commit(s) were added to refs/heads/trunk by this push:
     new 799939d68a OAK-9834 : clarify node names of ACL nodes (#610)
799939d68a is described below

commit 799939d68a6ef7347dfd7f505533a4c3c573f1be
Author: Konrad Windszus <kw...@apache.org>
AuthorDate: Wed Jul 13 10:56:41 2022 +0200

    OAK-9834 : clarify node names of ACL nodes (#610)
    
    explain limitations of the repository representation
---
 oak-doc/src/site/markdown/security/accesscontrol/default.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/oak-doc/src/site/markdown/security/accesscontrol/default.md b/oak-doc/src/site/markdown/security/accesscontrol/default.md
index 43f94acb00..3d046a6f5b 100644
--- a/oak-doc/src/site/markdown/security/accesscontrol/default.md
+++ b/oak-doc/src/site/markdown/security/accesscontrol/default.md
@@ -127,10 +127,11 @@ in Oak 1.0 as well as a list of built-in restrictions and extensibility can be
 found in section [Restriction Management](../authorization/restriction.html).
 
 <a name="representation"></a>
+
 ### Representation in the Repository
 
-All access control policies defined with an Oak repository are stores child of
-the node they are bound to. The node type definition used to represent access control content:
+Access control policies created and modified using the default authorization model are stored as child of
+the node they are bound to with name `rep:policy` or as node with path `/rep:repoPolicy` (for repo-level policies). The node type definition used to represent access control content:
 
     [rep:AccessControllable]
       mixin