| Excerpt |
|---|
Describes how messages requesting operation on a collection are checked against the permission model. |
...
Components participating in a Bit Repository where RequireOperationAuthorization in RepositorySettings have been set to true is required to authorise any operation prior to performing them.
...
- An Operation type. There is one Operation type for each operation type (see Protocol messages), and a catch-all named "All"
- An optional list of allowed component IDs who are allowed to perform the operationwhere the permission applies i.e. a certificate is allowed to delete a file on PillarA but not on PillarB. If the list is not present it implies that there is no restriction
- An optional list of collection IDs where the OperationPermission applies. If the list is not present it implies that there is no restriction
...