Configuring access control lists using the web service API

To programmatically configure access control lists using the Repository service web service API, perform the following tasks:

1.	Include project files

•	Create a Microsoft .NET client assembly that consumes the Repository WSDL (see Creating a .NET client assembly).

•	Reference the Microsoft .NET client assembly (see Referencing the .NET client assembly).

2.	Create the service client

Using the Microsoft .NET client assembly, create a RepositoryServiceService object by invoking its default constructor. Set its Credentials property using a System.Net.NetworkCredential object containing the user name and password.

3.	Specify the URI of the resource to be used in the ACL

Specify a string containing the URI of the resource. In this case, because the resource is the folder testFolder, its URI is "/testFolder". When using a language compliant with the Microsoft .NET Framework (for example, C#), store the URI in a System.String object.

4.	Retrieve the ACL for the resource

Invoke the RepositoryServiceService object’s readAccessControlList method and pass the URI of the resource as a parameter. The method returns an AccessControlList object. Pass null for the second parameter.

5.	Retrieve the list of users having access to the resource

Retrieve the AccessControlList object’s usersWithPermissions field, which is an object array containing strings representing the user identifiers. In this example, the list of users is printed to the screen.

6.	Create the new ACL

Invoke the default constructor for the AccessControlList class to create a new AccessControlList object to be used.

7.	Specify the users to be included in the new ACL

Determine which user identifiers to be used in the access control list. In this example, the first user in the list previously retrieved will be used.

8.	Specify the permissions to be included in the new ACL

Create an object array that will be used to store the list of permissions, and add the preferred permissions to the array, which must be specified as strings. In this example, traversal and read permissions are specified for a folder; therefore, the values "Traverse" and "Read" are added to the list.

Invoke the default constructor for the AccessControlEntry class to create a new object needed for storing the permissions, and assign the permissions object to the AccessControlEntry object’s permissions field.

Create an object array, store the AccessControlEntry object in it, and assign the array to the AccessControlList object’s entries field.

Create an object array, store the user identifier in it, and assign the array to the AccessControlList object’s usersWithPermissions field.

9.	Write the new ACL for the resource

Invoke the RepositoryServiceService object’s writeAccessControlList method and pass in the following parameters:

•	The URI of the resource.

•	The access control list.

•	A boolean value used to determine whether to propagate the permissions to all path-contained resources if the resource is a collection (com.adobe.repository.infomodel.bean.ResourceCollection). In this example, the value true is specified.

•	A boolean value used to determine whether the propagate value was specified. In this example, a value of true is specified.

•	Pass null for the remaining parameter.

View Quick Start

 

Send me an e-mail when comments are added to this page | Comment Report

Current page: http://livedocs.adobe.com/livecycle/es/sdkHelp/programmer/sdkHelp/repositoryAccessingFiles.127.4.html

Add Comment