Magnolia 5.6 reached end of life on June 25, 2020. This branch is no longer supported, see End-of-life policy.
...
Info |
---|
JCR access security can be bypassed for the |
Command level security access is the lowest level of access you can configure by role for REST endpoints.
...
Todo | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|
To be further specified into
|
Note |
---|
You can make sweeping changes with commands, such as bypassing approval and deleting the whole site. Commands are therefore subject to special security restrictions. |
To enable the use of commands through REST:
rest-admin
role a permission to issue requests to the commands
endpoint. Permission to the endpoint is denied by default. Add a new rule./modules/rest-services/rest-endpoints/commands/enabledCommands
....
enableHeadingAttributes | false |
---|---|
enableSorting | false |
class | m5-configuration-tree |
enableHighlighting | false |
...
Mgnl f |
---|
...
Mgnl f |
---|
...
Mgnl f |
---|
...
Mgnl n |
---|
...
Mgnl n |
---|
...
Mgnl n |
---|
...
Mgnl n |
---|
...
Mgnl n |
---|
...
Mgnl p |
---|
...
rest-admin
...
Mgnl p |
---|
...
website
...
Mgnl p |
---|
...
activate
...
Mgnl n |
---|
...
Mgnl n |
---|
Properties:
...
required
Enabled commands node.
...
<command>
...
required
Arbitrary name for the command. Use any name you like.
...
access
...
required
Access node.
...
roles
...
required
Roles node.
...
<role>
...
required
Role name. Grants the role permission to execute the command . Add the rest-admin
role. The property name is arbitrary but the value must be a valid role name.
...
catalogName
...
required
Catalog where the command resides.
...
commandName
...
required
Command definition name.