在CC.NET 1.5中配置安全設置

Question

以下是ccnet.config文件，我使用的是CC.NET 1.5的新安全功能。任何人都可以讓我知道我做錯了什麼。 我在一個DOMAIN中有兩個組，我想讓一個組只查看另一個組並完全訪問。

<cruisecontrol> 
    <project> 
    <name>Introvert</name> 
     <!-- Security Settings --> 
     <security type="defaultProjectSecurity" defaultRight="Deny"> 
      <permissions> 
       <!-- Grant permissions to this project --> 
       <rolePermission name="ViewOnly" ref="ViewOnly"/> 
       <rolePermission name="FullAccess" ref="FullAccess"/> 
      </permissions> 
     </security> 

    </project> 


<!-- Security Settings --> 
    <internalSecurity> 
     <users> 
      <simpleUser name="DOMAIN\GROUP1\*" /> 
      <simpleUser name="DOMAIN\GROUP2\*" /> 
     </users> 
     <permissions> 
      !-- Roles --> 
      <rolePermission name="FullAccess" forceBuild="Allow" startProject="Allow" > 
       <users> 
        <userName name="DOMAIN\GROUP1\"/> 
       </users>   
      </rolePermission> 
      <rolePermission name="ViewOnly" forceBuild="Deny" startProject="Deny"> 
       <users> 
        <userName name="DOMAIN\GROUP2\"/> 
       </users> 
      </rolePermission> 
     </permissions> 
    </internalSecurity> 
</cruisecontrol> 

Answer 1

<!-- Security Settings --> 
    <internalSecurity> 
     <users> 
      <simpleUser name="DOMAIN\GROUP1\*" /> 
      <simpleUser name="DOMAIN\GROUP2\*" /> 
     </users> 
     <permissions> 
      **!-- Roles -->** <-- mising a "<", bad formatted XML 
      <rolePermission name="FullAccess" forceBuild="Allow" startProject="Allow" > 
       <users> 
        <userName name="DOMAIN\GROUP1\"/> <-- shouldn't it be DOMAIN\GROUP1\*? 
       </users>   
      </rolePermission> 
      <rolePermission name="ViewOnly" forceBuild="Deny" startProject="Deny"> 
       <users> 
        <userName name="DOMAIN\GROUP2\"/> 
       </users> 
      </rolePermission> 
     </permissions> 
    </internalSecurity>