# HG changeset patch # User Laurent Peuch # Date 1550771663 -3600 # Node ID c5eb647b704610fb185da1e6c4baac88bccdae39 # Parent 4a08a2b6e979db928c1a7efce9bd08bfd3514a8b [doc] style, switch to bullet points list to make things easier to read diff -r 4a08a2b6e979 -r c5eb647b7046 doc/tutorials/advanced/part02_security.rst --- a/doc/tutorials/advanced/part02_security.rst Thu Feb 21 18:53:39 2019 +0100 +++ b/doc/tutorials/advanced/part02_security.rst Thu Feb 21 18:54:23 2019 +0100 @@ -21,10 +21,12 @@ * only authenticated users can see people * everyone can see classifier entities, such as tag and zone -Also, unless explicitly specified, the visibility of an image should be the same as -its parent folder, as well as visibility of a comment should be the same as the -commented entity. If there is no parent entity, the default visibility is -``authenticated``. +Also: + +* unless explicitly specified, the visibility of an image should be the same as +its parent folder +* the visibility of a comment should be the same as the commented entity +* If there is no parent entity, the default visibility is ``authenticated``. Regarding write security, that's much easier: @@ -42,10 +44,13 @@ Step 1: configuring security into the schema ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -In schema, you can grant access according to groups, or to some RQL expressions: -users get access if the expression returns some results. To implement the read -security defined earlier, groups are not enough, we'll need some RQL expression. Here -is the idea: +In the schema, you can grant access according to: + +* groups +* to some RQL expressions: users get access if the expression returns some results + +To implement the read security defined earlier, groups are not enough, we'll +need some RQL expression. Here is the idea: * add a `visibility` attribute on Folder, File and Comment, which may be one of the value explained above