Hi!

We would like to implement a more finegrained control of permissions than currently possible.

The permissions should be on a per-node/per-principal basis.

Our idea is to have a mode:accessControllable mixin on the nodes which can then be checked for the the privileges of a principle in

AuthorizationProvider.hasPermission.

To be able to implement this, we would need to have access to the node that we want to reason upon from the scope of hasPermission()

When modifying the ACLs, we plan to have a custom mechanism, that automatically pushes down the ACLs to child nodes.

This would slow down writing ACLs but speed up the hasPermission();

Any thoughts on this idea?

regards,

Marius