基本自訂 > User Interface Customization > Configurable Links > Configurable Link Tables > Defining Access Control Policy Rules for Configurable Links
Defining Access Control Policy Rules for Configurable Links
After defining a Configurable Link Subtype based on ConfigurableMastersLink, the access control policy rules for the configurable link subtype must be defined or loaded so that the to grant the product or library or project team members the appropriate access rights. There are no OOTB access rules for ConfigurableMastersLink object or any of its subtypes. Therefore, OOTB only the administrative users have the right to create these links.
The access control policy rules for the ConfigurableMastersLink can be defined in one of the following three ways:
1. Use Policy Administration to add access policies for the ConfigurableMastersLink subtypes.
2. Load the access control policy rules using the csvAccessRule tag in an XML load file.
Following is an example of an access control policy rule that can be loaded via an XML file that will grant everyone permissions read, modify, create and delete ConfigurableMastersLink objects. More specific access control policy rules can be defined for subtypes of ConfigurableMastersLink.
<csvAccessRule handler="wt.load.LoadUser.createAccessRule">
<csvuser/>
<csvdomain>/System</csvdomain>

<csvtypeId>wt.configurablelink.ConfigurableMastersLink</csvtype
Id>
<csvpermission>+</csvpermission>
<csvprincipal>ALL</csvprincipal>
<csvpermissionList>0/1/2/5</csvpermissionList>
<csvstate/>
</csvAccessRule>
3. Update the product and/or library container templates to include the access control policy rules for the ConfigurableMastersLink and/or its subtypes. Any new products or libraries created with the updated templates will automatically load the access control policy rules. Following is an example of an access control policy rule that can be added to a product or library templates that will grant the teamMembers permissions read, modify, create and delete ConfigurableMastersLink objects. More specific rules can be defined for subtypes of ConfigurableMastersLink.
<AccessControlRule>
<domainName>/Default</domainName>

<externalTypeId>wt.configurablelink.ConfigurableMastersLink</ex
ternalTypeId>
<lifecycleState>ALL</lifecycleState>
<WTPrincipalReference isInternal="true">
<groupName>teamMembers</groupName>
<groupType>teamMembers</groupType>
</WTPrincipalReference>
<grantPermissionSet>
<AccessPermissionSet>
<permissionField name="READ"/>
<permissionField name="MODIFY"/>
<permissionField name="CREATE"/>
<permissionField name="DELETE"/>
</AccessPermissionSet>
</grantPermissionSet>
</AccessControlRule>
這是否有幫助?