User can edit content in a not-assigned domain

Thanks for your quick reply and my delay. I am very busy at the moment.
I still have a problem. I think I don't understand it completely or the way I like it to work is different from your implementation.
If I do what you recomment, the user is able to edit current nodes in his domain only, but is not allowed to create any node.
What I want:
user 5: can only create, edit all and edit own story in domain 2, but not in other domains
user 6: can create, edit all and edit own all nodetypes in domain 2, but not in other domains
user 7: can only create, edit all and edit own books in domain 2, but not in other domains
user 8: can only create, edit all and edit own books in domain 2 and 3, but not in other domains
user 9: can only create, edit all and edit own books in domain 3, but not in other domains
user 10: can create, edit all and edit own all nodetypes in domain 1 and 2, but not in other domains

Is this possible?

I found a solution for my problem. I created a small module with the following content:

<?php
function mydomain_node_nodeapi(&$node, $op, $a3 = NULL, $a4 = NULL) {
  switch ($op) {
    case 'prepare':
    global $user, $_domain;

    if (!$user->domain_user[$_domain['domain_id'] == 0 ? -1 : $_domain['domain_id']]) {
      drupal_access_denied();
    }
  }
}

drupal_access_denied() in this context is not user friendly: it clutters the result with an additional screenlayout. I modified this function in two places to send a correct result page to the user. I you anyone is interested, send me an e-mail.