Documentation
Advanced security : multiple owners, multiple teams
Advanced security in Sushee allows to give access to multiple owners and multiple teams on an element, as in Windows filesystem.
Traditional security in Sushee is one owner, one team for an element, as in Unix filesystem. The owner is defined in the OWNERID field, while the team is defined in the GROUPID field.
Advanced security is not enabled by default and has to be activated by turning the ADVANCEDSECURITY boolean in the module to 1.
Traditional AND advanced security is only applied when the modulekey is not an administrator modulekey : ISPRIVATE flag should be set to 0.
Advanced security is complementary to Sushee traditional security : OWNERID and GROUPID stays valid even in Advanced security.
exemples
<CREATE>
<MODULE>
<INFO>
<DENOMINATION>nectil:filefolder</DENOMINATION>
</INFO>
</MODULE>
</CREATE>
Creates a new type of object
<UPDATE>
<KEYRING ID="2">
<DEPENDENCIES>
<DEPENDENCY type="keyringModuleKeys" operation="append">
<MODULEKEY>
<INFO>
<DENOMINATION>FileFolder access</DENOMINATION>
<ISPRIVATE>0</ISPRIVATE>
<MODULETOID>1067</MODULETOID>
<FIELDS>
<ID>W</ID>
<ACTIVITY>W</ACTIVITY>
</FIELDS>
</INFO>
</MODULEKEY>
</DEPENDENCY>
</DEPENDENCIES>
</KEYRING>
</UPDATE>
Creates a private access to this type of elements and enables it in the keyring
<UPDATE>
<MODULE ID="1024">
<INFO>
<ADVANCEDSECURITY>1</ADVANCEDSECURITY>
</INFO>
</MODULE>
</UPDATE>
Enables advanced security on this new type of object.
<CREATE>
<NECTIL:FILEFOLDER>
<INFO>
<OWNERS>
<CONTACT ID="1857" security="W"/>
</OWNERS>
</INFO>
</NECTIL:FILEFOLDER>
</CREATE>
Authorizes write access for the user 1857 on the element
<UPDATE>
<NECTIL:FILEFOLDER ID="2">
<INFO>
<OWNERS>
<CONTACT ID="1857" security="W"/>
</OWNERS>
<GROUPS>
<GROUP ID="131" security="R"/>
</GROUPS>
</INFO>
</NECTIL:FILEFOLDER>
</UPDATE>
Enables write access for a specific user and read access for all the members of a group/team.