Applying security rules to board shares

Owned by Olivier Grenet
Jul 11, 2022
1 min read

By default, the act of sharing an asset is canceling all security rules that may be applied to sharing.

Sometimes, this is not desirable, because assets have rules you would like to enforce.

A common use case is enforcing the status of the asset, and removing expired assets from the share links.

In that case, you need to follow the steps below to activate the security rules for board sharing :

  1. Create a new common user with role public for every environment (same ID on each environment which may be tricky in some case)

  2. Create a new security domain named customcartdata

  3. In customcartdata create a new action named view with the following parameters

    1. surfer of type wsnoheto.securite.parameter.SurferParameter

    2. objectname of type wsnoheto.securite.parameter.StringParameter

    3. object of type wsnoheto.securite.parameter.ObjectNohetoParameter

  4. In WXM_CART2 change your parameters like this :

    1. security.enabled=true

    2. security.domain=customcartdata

    3. security.action=view

    4. security.share.impersonateAsUserId=$USERID defined at step 1

  5. Create your security rules for asset visibilty in carts in the pscartdata/view action.

 

Your connected users will be recongized as such, so you can apply different rules for admins/contributors...

Anonymous users (people who will receive a shared collection link) will be identified with the user defined with security.share.impersonateAsUserId parameter