The ACLProvider generates access control policies out of the items stored
in the workspace applying the following rules:
A Node is considered access controlled if an ACL has
been explicitly assigned to it by adding the mixin type
rep:AccessControllable and adding child node of type
rep:acl that forms the acl.
a Property is considered 'access controlled' if its parent Node is.
An ACL is never assigned to a Property item.
A Node that is not access controlled may inherit the ACL.