Default security metadata rules

When a user adds a new document or creates a new collectionA collection is a container for storing and organising ingested files and documents. Only the textual content is stored in collections, not the original files and documents., this content is unsecured and does not contain any security metadata.

Default security metadata rules are used to automatically assign security metadata to new documents and collections that are created by users.

The security metadata that gets assigned is dependent on the default security metadata rules and the security privileges of the active user.

Child element tags

Table 1: Child element tags

Tag

Description

<rule>

Default security metadata rules are defined with <rule> tags which are nested under the <default-security-metadata> tag.

There is only one rule type that is used under default security metadata. It is assigned using the following class value:

 

inherit-claim

Assigns the values of a security privilege property to a security metadata property of a new Document or Collection.

<claim>

The <claim> tag is used inside a rule to target a specific security privileges property field.

This is done by entering the name attribute value of a claim schema <property> tag between the opening and closing <claim> tags.

<security-metadata>

The <security-metadata> tag is used inside a rule to target a specific security metadata property field.

This is done by entering the name attribute value of a security metadata schema <property> tag between the opening and closing <security-metadata> tags.

Code examples

Table 2: Code examples for common implementations of default security metadata rules

Task

Code example and Sintelix UI output

Create a default security metadata rule that automatically assigns a user's security privileges to new Documents and Collections.

<default-security-metadata>

<rule class="inherit-claim"><claim>user-name</claim><security-metadata>user-access</security-metadata>

</rule>

<rule class="inherit-claim">

<claim>group</claim><security-metadata>group-access</security-metadata>

</rule>

</default-security-metadata>

The default security metadata rules will assign the active user johnsmith's security privileges to any new Documents or Collections he creates.

Sintelix UI output: Security Privileges: Admin > Manage User Accounts > Users authenticated by Sintelix > Security Privileges column

 

Security Metadata: Security metadata is automatically entered when the user johnsmith creates a new Collection.

Collections > Collection > Collection Configuration > Security Metadata pane

 

fontfontfont