2010-01-31 82 views
2

以下是ccnet.config文件,我使用的是CC.NET 1.5的新安全功能。任何人都可以让我知道我做错了什么。 我在一个DOMAIN中有两个组,我想让一个组只查看另一个组并完全访问。在CC.NET 1.5中配置安全设置

<cruisecontrol> 
    <project> 
    <name>Introvert</name> 
     <!-- Security Settings --> 
     <security type="defaultProjectSecurity" defaultRight="Deny"> 
      <permissions> 
       <!-- Grant permissions to this project --> 
       <rolePermission name="ViewOnly" ref="ViewOnly"/> 
       <rolePermission name="FullAccess" ref="FullAccess"/> 
      </permissions> 
     </security> 

    </project> 


<!-- Security Settings --> 
    <internalSecurity> 
     <users> 
      <simpleUser name="DOMAIN\GROUP1\*" /> 
      <simpleUser name="DOMAIN\GROUP2\*" /> 
     </users> 
     <permissions> 
      !-- Roles --> 
      <rolePermission name="FullAccess" forceBuild="Allow" startProject="Allow" > 
       <users> 
        <userName name="DOMAIN\GROUP1\"/> 
       </users>   
      </rolePermission> 
      <rolePermission name="ViewOnly" forceBuild="Deny" startProject="Deny"> 
       <users> 
        <userName name="DOMAIN\GROUP2\"/> 
       </users> 
      </rolePermission> 
     </permissions> 
    </internalSecurity> 
</cruisecontrol> 
+0

本Ragha任何运气?我正面临类似的配置,并想知道你是否能够得到这个工作。 – HAL9000 2010-12-10 20:34:41

回答

0
<!-- Security Settings --> 
    <internalSecurity> 
     <users> 
      <simpleUser name="DOMAIN\GROUP1\*" /> 
      <simpleUser name="DOMAIN\GROUP2\*" /> 
     </users> 
     <permissions> 
      **!-- Roles -->** <-- mising a "<", bad formatted XML 
      <rolePermission name="FullAccess" forceBuild="Allow" startProject="Allow" > 
       <users> 
        <userName name="DOMAIN\GROUP1\"/> <-- shouldn't it be DOMAIN\GROUP1\*? 
       </users>   
      </rolePermission> 
      <rolePermission name="ViewOnly" forceBuild="Deny" startProject="Deny"> 
       <users> 
        <userName name="DOMAIN\GROUP2\"/> 
       </users> 
      </rolePermission> 
     </permissions> 
    </internalSecurity>