Personalization and Programmatic Security Example

Cute Editor allows developers to assign a pre-defined set of permissions by group or individual. This prevents a normal user to access the administration functionality. The details of permissions are specified by an XML security policy file. Each level maps to a specific file. The default mappings:

  • adminmaps to admin.config
  • defaultmaps to default.config
  • guestmaps to guest.config

You can customize and extend each policy file by editing the XML security policy file. You can also create your own policy files that define arbitrary permission sets. Comparison of the sample security policy file


Permissions/Resource Setting Admin Default Guest
AllowUpload Marked Marked
AllowDelete Marked
AllowCopy Marked
AllowMove Marked
AllowCreateFolder Marked
AllowDeleteFolder Marked
RestrictUploadedImageDimension Marked Marked
AutoResizeUploadedImages Marked Marked
MaxImageWidth 6400 640 640
MaxImageHeight 4800 480 480
MaxImageSize 10000 100 100
MaxMediaSize 10000 100 100
MaxFlashSize 10000 100 100
MaxDocumentSize 10000 100 100
ImageGalleryPath ~/uploads ~/uploads/member ~/uploads/guest
MediaGalleryPath ~/uploads ~/uploads/member ~/uploads/guest
FlashGalleryPath ~/uploads ~/uploads/member ~/uploads/guest
FilesGalleryPath ~/uploads ~/uploads/member ~/uploads/guest
ImageFilters .jpg
.jpeg
.gif
.png
.jpg
.jpeg
.gif
.jpg
.jpeg
.gif
MediaFilters .avi
.mpg
.mpeg
.mp3
.avi
.mpg
.mpeg
.avi
.mpg
.mpeg
DocumentFilters .txt, .doc
.pdf, .zip
.rar, .avi
.mpg, .mpeg
.mp3, .jpg
.jpeg,.gif
.png
.pdf, .doc
.txt, .doc
.pdf, .zip