如何保护 Sitecore 内容树中的整个分支? [英] How to secure an entire branch in a Sitecore content tree?

问题描述

我有一部分内容树，我想拒绝除特定角色之外的所有权限.这似乎是一项非常明显的任务，但我在安全管理员手册中没有看到它的示例，而且我无法找到使用安全工具执行此操作的简单方法.我一定遗漏了一些明显的东西...... ???

I have a section of my content tree which I would like to deny ALL permissions to except for specific roles. This seems like a really obvious task to perform, and yet I don't see an example of it in the Security Administrator's Cookbook and I can't figure out an easy way to do it using the security tools. I must be missing something obvious... ???

说我有这个:

sitecore
-content
  -branchA
  -branchB

默认情况下，我在内容树中创建的所有内容都可以被 extranet\Anonymous 读取.但即使我点击安全功能区上的需要登录"，所有用户仍然具有读取权限，他们只需要登录.我想让只有 sitecore\SomeRole 成员才能读取 branchB.这是怎么做的?

Everything I created in the content tree is readable by extranet\Anonymous by default. But even when I click on the "Require Login" on the security ribbon, all users still have read access, they just have to log in. I want to make branchB readable by ONLY sitecore\SomeRole members. How is this done?

推荐答案

好的，请遵循此指南.

假设我们有 sitecore\SomeRole 和这样的内容树:

Let's say we have sitecore\SomeRole and a content tree like this:

Home
  branchA
    itemA1
  branchB
    itemB1

我们想拒绝所有人访问 branchB 及其所有后代，除了 SomeRole.

We'd like to deny acccess to branchB and all its descendants for everyone, except for SomeRole.

首先，在安全编辑器中选择 Home 节点，选择 sitecore\Everyone 角色并设置以下权限:

First off, in Security Editor select Home node, choose sitecore\Everyone role and set the following permissions:

替代文字 http://img822.imageshack.us/img822/7172/sitecoreeveryonepermiss.png

现在检查 AccessViewer 中的访问权限 - 这就是我们需要的:

Now check the access in AccessViewer - that's what we need:

替代文字 http://img532.imageshack.us/img532/3512/sitecoreeveryoneaccess.png

让我们为 SomeRole 允许 branchB.返回安全编辑器并明确允许 SomeRole 的权限:

Let's allow branchB for SomeRole. Go back to Security Editor and explicitly allow permissions for SomeRole:

替代文字 http://img80.imageshack.us/img80/120/sitecoresomerolepermiss.png

并再次在 AccessViewer 中检查:

And check this in AccessViewer again:

替代文字 http://img27.imageshack.us/img27/9584/sitecoresomeroleaccess.png

希望这能回答您的问题.请注意 6.2.X 之前的 Sitecore 版本存在一个问题:设置权限后 AccessViewer 无法正确刷新.杀死 aspnetwp (w3wp) 来解决这个问题.

Hope this answers your question. Beware that Sitecore versions prior to 6.2.X have an issue: AccessViewer doesn't refresh correctly after permissions are set. Kill aspnetwp (w3wp) to fix this.

这篇关于如何保护 Sitecore 内容树中的整个分支?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！