Modules | |
| Document Access Types | |
Detailed Description
Our blog discusses much background in the Access Control series and in the Identity series.
This API for Document Access finds the rights of Remote Identity to work on a Folder or Document. This is handled as a special form of Access Rules, using the ((user and) volume and) path to a Document or Folder as the Access Name.
Inasfar as ARPA2 Reservoir is used, the form starts with /<colluuid>/ to determine Access Rights to Collections; anything else is stripped. Other forms that start with one slash only are considered aliases in the ARPA2 Reservoir and yield only KV, so merely permission to know about the existence of this alias.
Other forms need to start with // and may be continued as //<user>@<volume>/<path> or //<volume>/<path>, as desired. These forms are used as literal Access Names.
There are currently no facilities for attributes and triggers, but future extensions to this call could allow such forms too.
