To read ( and hence return ) a target entry , the subject must have read access to the target ' s entry attribute 要讀目的條目,則必須要有目的條目屬性的讀權(quán)限。
To add or delete an entry , the subject must have write access to the entry ' s entry attribute and must have write access to the entry ' s parent ' s children attribute 要添加或刪除條目,則必須要有對條目屬性的寫權(quán)限以及對該條目父節(jié)點的子節(jié)點屬性的寫權(quán)限。
To rename an entry , the subject must have write access to entry ' s entry attribute and have write access to both the old parent ' s and new parent ' s children attributes 要重命名條目,則必須對條目的條目屬性要有寫權(quán)限以及對老的父節(jié)點和新的父節(jié)點的子節(jié)點屬性要有寫權(quán)限。