We have not been able to implement access controls/permissions that meet our use cases in Islandora 7.x. Our use cases really need user/group by role by content (by view) within a site sort of access controls/permissions to support enhanced collaboration. AFAIK, Islandora CLAW is just starting to dig into this. We figure that using XACML inside Islandora, while very interesting, is not sustainable. So are are collecting information about non-XACML implementations (and separating infrastructure access controls from UI ones). We plan to put money and time into this but we don't want to repeat work that has already been done or is not useful to the community. We also want to see how to bridge between Islandora 7.x and Islandora CLAW, looking at transition over time.
If anyone knows of interesting implementations, it would be great if can post them here?
If anyone has been experimenting with Organic Groups, can we exchange information? I saw an old IRC question by Peter Murray about OG but no response.
If others are looking at access controls/permissions, we would really like to connect.
I promised Daniel Lamb to write up our use cases and I will post that when its readable.
--
Daniel Davis
Technical Manager,
Office of Research Information Services
Office of the CIO, Smithsonian Institution