You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@sling.apache.org by dr...@drfits.com on 2017/11/26 12:57:54 UTC

Principal "everyone" is not clear

Dear All,

 

Can you please explain the purpose of the "everyone" ACL within
repoinit.txt? I've tried to find everyone in user/group list but OOTB we
have only anonymous and admin users.

 

Code example:

 

set ACL for everyone

    allow  jcr:read  on /

end

 

Link to the initialization:
https://github.com/apache/sling-org-apache-sling-starter/blob/master/src/mai
n/provisioning/repoinit.txt#L29-L31

 

С уважением,

Фицнер Евгений Владимирович /

Best Regards,
Evgeniy Fitsner

 

e-mail:  <ma...@drfits.com> drfits@drfits.com

Skype: drfits

Re: Principal "everyone" is not clear

Posted by Robert Munteanu <ro...@apache.org>.

Hi Evgeniy,

On Sun, 2017-11-26 at 15:57 +0300, drfits@drfits.com wrote:
> Can you please explain the purpose of the "everyone" ACL within
> repoinit.txt?

The 'everyone' principal is a 'virtual' ( for lack of a better term )
principal that matches, well, everyone. You can think of it as a group
in which every other principal is container.

By allowing jcr:read access to everyone on '/', we allow every
principal jcr:read rights for the whole repository.

Thanks,

Robert