Aske Ertmann aertmann

## Policy.yaml
privilegeTargets:

  'Neos\Flow\Security\Authorization\Privilege\Entity\Doctrine\EntityPrivilege':
    'Acme.Package:Site.Alpha':
      matcher: 'isType("Neos\Neos\Domain\Model\Site") && property("nodeName") == "alpha"'

    'Acme.Package:Site.Beta':
      matcher: 'isType("Neos\Neos\Domain\Model\Site") && property("nodeName") == "beta"'

  'Neos\Neos\Security\Authorization\Privilege\NodeTreePrivilege':

## Policy.yaml
privilegeTargets:

  'Wwwision\AssetConstraints\Security\Authorization\Privilege\ReadAssetPrivilege':
    'Acme.Package:Assets.Alpha':
      matcher: 'isInCollection("Alpha")'

    'Acme.Package:Assets.Beta':
      matcher: 'isInCollection("Beta")'

  'Wwwision\AssetConstraints\Security\Authorization\Privilege\ReadAssetCollectionPrivilege':

## Policy.yaml
privilegeTargets:

  'Neos\Flow\Security\Authorization\Privilege\Entity\Doctrine\EntityPrivilege':
    'Acme.Package:NotUsersSite':
      matcher: 'isType("Neos\Neos\Domain\Model\Site") && property("nodeName") != "context.userInformationContext.account.accountIdentifier"'

  'Wwwision\AssetConstraints\Security\Authorization\Privilege\ReadAssetPrivilege':
    'Acme.Package:NotUsersAssets':
      matcher: '!(isInCollection("context.userInformationContext.site.propertyName") || isWithoutCollection())'

## Policy.yaml
roles:
  'Neos.Flow:Anonymous':
    privileges:
      -
        privilegeTarget: 'Acme.Package:Site.Alpha'
        permission: GRANT
      -
        privilegeTarget: 'Acme.Package:Site.Beta'
        permission: GRANT

## Policy.yaml
privilegeTargets:

  'Neos\Flow\Security\Authorization\Privilege\Entity\Doctrine\EntityPrivilege':

    'Acme.Package:Site.Alpha':
      matcher: 'isType("Neos\Neos\Domain\Model\Site") && property("nodeName") == "alpha"'

    'Acme.Package:Site.Beta':
      matcher: 'isType("Neos\Neos\Domain\Model\Site") && property("nodeName") == "beta"'

## Policy.yaml
roles:
  'Acme.Package:Alpha':
    privileges:
      -
        privilegeTarget: 'Acme.Package:Nodes.Alpha'
        permission: GRANT

  'Acme.Package:Beta':
    privileges:
      -

## Policy.yaml
privilegeTargets:

  'Neos\Neos\Security\Authorization\Privilege\NodeTreePrivilege':

    'Acme.Package:Nodes.Alpha':
      matcher: 'isDescendantNodeOf("/sites/alpha")'

    'Acme.Package:Nodes.Beta':
      matcher: 'isDescendantNodeOf("/sites/beta")'

## Settings.yaml
Neos:
  Flow:
    security:
      authentication:
        providers:
          NeosBackendProvider:
            provider: 'Acme\Package\Security\Authentication\Provider\SiteAwarePersistedUsernamePasswordProvider'

## gist:eac0e00c8194d5ffede5
root.footer {
  @position = 'before default'
  condition = ${request.parentRequest.uri.path == '/footer.html'}
	renderPath = '/footer'
}

footer < page.footer # reference to footer TypoScript path

## Package.php
<?php
namespace Acme\Demo;

use TYPO3\Flow\Package\Package as BasePackage;
use TYPO3\TYPO3CR\Domain\Model\NodeInterface;

class Package extends BasePackage {

	/**
	 * @var \TYPO3\TYPO3CR\Domain\Service\NodeTypeManager nodeTypeManager
	privilegeTargets:

	'Neos\Flow\Security\Authorization\Privilege\Entity\Doctrine\EntityPrivilege':
	'Acme.Package:Site.Alpha':
	matcher: 'isType("Neos\Neos\Domain\Model\Site") && property("nodeName") == "alpha"'

	'Acme.Package:Site.Beta':
	matcher: 'isType("Neos\Neos\Domain\Model\Site") && property("nodeName") == "beta"'

	'Neos\Neos\Security\Authorization\Privilege\NodeTreePrivilege':
	privilegeTargets:

	'Wwwision\AssetConstraints\Security\Authorization\Privilege\ReadAssetPrivilege':
	'Acme.Package:Assets.Alpha':
	matcher: 'isInCollection("Alpha")'

	'Acme.Package:Assets.Beta':
	matcher: 'isInCollection("Beta")'

	'Wwwision\AssetConstraints\Security\Authorization\Privilege\ReadAssetCollectionPrivilege':
	privilegeTargets:

	'Neos\Flow\Security\Authorization\Privilege\Entity\Doctrine\EntityPrivilege':
	'Acme.Package:NotUsersSite':
	matcher: 'isType("Neos\Neos\Domain\Model\Site") && property("nodeName") != "context.userInformationContext.account.accountIdentifier"'

	'Wwwision\AssetConstraints\Security\Authorization\Privilege\ReadAssetPrivilege':
	'Acme.Package:NotUsersAssets':
	matcher: '!(isInCollection("context.userInformationContext.site.propertyName") \|\| isWithoutCollection())'
	roles:
	'Neos.Flow:Anonymous':
	privileges:
	-
	privilegeTarget: 'Acme.Package:Site.Alpha'
	permission: GRANT
	-
	privilegeTarget: 'Acme.Package:Site.Beta'
	permission: GRANT
	roles:
	'Acme.Package:Alpha':
	privileges:
	-
	privilegeTarget: 'Acme.Package:Nodes.Alpha'
	permission: GRANT

	'Acme.Package:Beta':
	privileges:
	-
	privilegeTargets:

	'Neos\Neos\Security\Authorization\Privilege\NodeTreePrivilege':

	'Acme.Package:Nodes.Alpha':
	matcher: 'isDescendantNodeOf("/sites/alpha")'

	'Acme.Package:Nodes.Beta':
	matcher: 'isDescendantNodeOf("/sites/beta")'
	Neos:
	Flow:
	security:
	authentication:
	providers:
	NeosBackendProvider:
	provider: 'Acme\Package\Security\Authentication\Provider\SiteAwarePersistedUsernamePasswordProvider'
	root.footer {
	@position = 'before default'
	condition = ${request.parentRequest.uri.path == '/footer.html'}
	renderPath = '/footer'
	}

	footer < page.footer # reference to footer TypoScript path
	<?php
	namespace Acme\Demo;

	use TYPO3\Flow\Package\Package as BasePackage;
	use TYPO3\TYPO3CR\Domain\Model\NodeInterface;

	class Package extends BasePackage {

	/**
	* @var \TYPO3\TYPO3CR\Domain\Service\NodeTypeManager nodeTypeManager