Access Control
In Repox, users can leverage Access Control Lists (ACLs) to manage permissions and ensure secure access to containers and datastreams. ACLs can be assigned at two levels: individual users or user groups, providing flexibility in managing roles and responsibilities. Permissions can be applied to a specific container or datastream, or inherited recursively by all child containers and datastreams within a hierarchy, allowing administrators to streamline access management across complex data structures. By effectively using ACLs, organizations can control who can view, edit, or manage collections and their associated metadata, ensuring data integrity and security while promoting collaborative workflows.
| ACL Type | Description |
|---|---|
| List | Users can view the existence of containers/datastreams in the repository but cannot access them. |
| Read | Users can view containers/datastreams and their metadata but cannot modify or add content. |
| Write | Users can edit metadata, create new containers, and upload new datastreams. |
| Full Control | Users can perform all actions under "Write" and also assign permissions to other users or groups. |
Note: If a user has assigned permissions and also belongs to one or more groups with assigned permissions, any conflicts between permissions are resolved by applying the highest level of permission available.
This robust permission system empowers organizations to maintain precise control over data access and collaboration within Repox.