https://connect.hyland.com/t5/alfresco-archive/bug-or-security-policy/m-p/239234#M192364 <HTML><HEAD></HEAD><BODY><SPAN>Hi, All</SPAN><BR /><BR /><SPAN>I have a problem, but don't understand it.</SPAN><BR /><SPAN>User1 and User2 have Contributor role.</SPAN><BR /><SPAN>At Discussion section&nbsp; - if User1 is creating message, User2 is able to add comment to it.</SPAN><BR /><SPAN>But at Blog section - If User2 is creating message, User2 unable to add comment - Access Denied.</SPAN><BR /><SPAN>At alfresco.log I see:</SPAN><BR /><PRE class="language-none line-numbers"><CODE><BR />11:41:44,459 ERROR [org.alfresco.web.scripts.AbstractRuntime] Exception from executeScript - redirecting to status template error: 06230076 Wrapped Exception (with status template): 06230075 Failed to execute script '/org/alfresco/repository/comments/comments.post.json.js (in classpath store file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts)': 06230074&nbsp; Access Denied.You do not have the appropriate permissions to perform this operation.<BR />org.alfresco.web.scripts.WebScriptException: 06230076 Wrapped Exception (with status template): 06230075 Failed to execute script '/org/alfresco/repository/comments/comments.post.json.js (in classpath store file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts)': 06230074 Access Denied.You do not have the appropriate permissions to perform this operation.<BR />at org.alfresco.web.scripts.AbstractWebScript.createStatusException(AbstractWebScript.java:613)<BR />at org.alfresco.web.scripts.DeclarativeWebScript.execute(DeclarativeWebScript.java:165)<BR />at org.alfresco.repo.web.scripts.RepositoryContainer$2.execute(RepositoryContainer.java:357)<BR />at org.alfresco.repo.transaction.RetryingTransactionHelper.doInTransaction(RetryingTransactionHelper.java:326)<BR />at org.alfresco.repo.web.scripts.RepositoryContainer.transactionedExecute(RepositoryContainer.java:407)<BR />at org.alfresco.repo.web.scripts.RepositoryContainer.transactionedExecuteAs(RepositoryContainer.java:424)<BR />at org.alfresco.repo.web.scripts.RepositoryContainer.executeScript(RepositoryContainer.java:288)<BR />at org.alfresco.web.scripts.AbstractRuntime.executeScript(AbstractRuntime.java:262)<BR />at org.alfresco.web.scripts.AbstractRuntime.executeScript(AbstractRuntime.java:139)<BR />at org.alfresco.web.scripts.servlet.WebScriptServlet.service(WebScriptServlet.java:122)<BR />at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)<BR />at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)<BR />at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)<BR />at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)<BR />at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)<BR />at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)<BR />at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)<BR />at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)<BR />at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:286)<BR />at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:845)<BR />at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)<BR />at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)<BR />at java.lang.Thread.run(Thread.java:619)<BR />Caused by: org.alfresco.scripts.ScriptException: 06230075 Failed to execute script '/org/alfresco/repository/comments/comments.post.json.js (in classpath store file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts)': 06230074&nbsp; Access Denied.You do not have the appropriate permissions to perform this operation.<BR />at org.alfresco.repo.jscript.RhinoScriptProcessor.execute(RhinoScriptProcessor.java:178)<BR />at org.alfresco.repo.processor.ScriptServiceImpl.executeScript(ScriptServiceImpl.java:274)<BR />at org.alfresco.repo.web.scripts.RepositoryScriptProcessor.executeScript(RepositoryScriptProcessor.java:108)<BR />at org.alfresco.web.scripts.AbstractWebScript.executeScript(AbstractWebScript.java:819)<BR />at org.alfresco.web.scripts.DeclarativeWebScript.execute(DeclarativeWebScript.java:90)<BR />… 21 more<BR />Caused by: org.alfresco.repo.security.permissions.AccessDeniedException: 06230074 Access Denied.You do not have the appropriate permissions to perform this operation.<BR />at org.alfresco.repo.security.permissions.impl.ExceptionTranslatorMethodInterceptor.invoke(ExceptionTranslatorMethodInterceptor.java:53)<BR />at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)<BR />at org.alfresco.repo.audit.AuditComponentImpl.audit(AuditComponentImpl.java:275)<BR />at org.alfresco.repo.audit.AuditMethodInterceptor.invoke(AuditMethodInterceptor.java:69)<BR />at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)<BR />at org.springframework.transaction.interceptor.TransactionInterceptor.invoke(TransactionInterceptor.java:106)<BR />at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)<BR />at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)<BR />at $Proxy9.addAspect(Unknown Source)<BR />at org.alfresco.repo.jscript.ScriptNode.addAspect(ScriptNode.java:1501)<BR />at org.alfresco.repo.jscript.ScriptNode.addAspect(ScriptNode.java:1478)<BR />at sun.reflect.GeneratedMethodAccessor2248.invoke(Unknown Source)<BR />at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)<BR />at java.lang.reflect.Method.invoke(Method.java:597)<BR />at org.mozilla.javascript.MemberBox.invoke(MemberBox.java:155)<BR />at org.mozilla.javascript.NativeJavaMethod.call(NativeJavaMethod.java:243)<BR />at org.mozilla.javascript.optimizer.OptRuntime.call1(OptRuntime.java:66)<BR />at org.mozilla.javascript.gen.c51._c8(file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts/org/alfresco/repository/comments/comments.post.json.js:179)<BR />at org.mozilla.javascript.gen.c51.call(file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts/org/alfresco/repository/comments/comments.post.json.js)<BR />at org.mozilla.javascript.optimizer.OptRuntime.callName(OptRuntime.java:97)<BR />at org.mozilla.javascript.gen.c51._c11(file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts/org/alfresco/repository/comments/comments.post.json.js:222)<BR />at org.mozilla.javascript.gen.c51.call(file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts/org/alfresco/repository/comments/comments.post.json.js)<BR />at org.mozilla.javascript.optimizer.OptRuntime.callName(OptRuntime.java:97)<BR />at org.mozilla.javascript.gen.c51._c12(file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts/org/alfresco/repository/comments/comments.post.json.js:246)<BR />at org.mozilla.javascript.gen.c51.call(file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts/org/alfresco/repository/comments/comments.post.json.js)<BR />at org.mozilla.javascript.optimizer.OptRuntime.callName0(OptRuntime.java:108)<BR />at org.mozilla.javascript.gen.c51._c0(file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts/org/alfresco/repository/comments/comments.post.json.js:266)<BR />at org.mozilla.javascript.gen.c51.call(file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts/org/alfresco/repository/comments/comments.post.json.js)<BR />at org.mozilla.javascript.ContextFactory.doTopCall(ContextFactory.java:393)<BR />at org.mozilla.javascript.ScriptRuntime.doTopCall(ScriptRuntime.java:2834)<BR />at org.mozilla.javascript.gen.c51.call(file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts/org/alfresco/repository/comments/comments.post.json.js)<BR />at org.mozilla.javascript.gen.c51.exec(file:/opt/Alfresco/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/templates/webscripts/org/alfresco/repository/comments/comments.post.json.js)<BR />at org.alfresco.repo.jscript.RhinoScriptProcessor.executeScriptImpl(RhinoScriptProcessor.java:449)<BR />at org.alfresco.repo.jscript.RhinoScriptProcessor.execute(RhinoScriptProcessor.java:174)<BR />… 25 more<BR />Caused by: net.sf.acegisecurity.AccessDeniedException: Access is denied.<BR />at net.sf.acegisecurity.vote.AffirmativeBased.decide(AffirmativeBased.java:86)<BR />at net.sf.acegisecurity.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:394)<BR />at net.sf.acegisecurity.intercept.method.aopalliance.MethodSecurityInterceptor.invoke(MethodSecurityInterceptor.java:77)<BR />at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)<BR />at org.alfresco.repo.security.permissions.impl.ExceptionTranslatorMethodInterceptor.invoke(ExceptionTranslatorMethodInterceptor.java:49)<BR />… 58 more<BR /><SPAN class="line-numbers-rows"><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN></SPAN></CODE></PRE><BR /><BR /><SPAN>Please explain me sense of Roles:</SPAN><BR /><SPAN>Consumer - can read only. Ok</SPAN><BR /><SPAN>Contributor - can create nodes, and manage it. Hе can't change,delete nodes created by other users. But I can't understand why he can't add comments to Blog created by other users.</SPAN><BR /><SPAN>Collaborator&nbsp; - can change anything, but can't delete nodes, created by other users.</SPAN><BR /><SPAN>Manager - can everything</SPAN><BR /><BR /><SPAN>Sorry for my poor english.</SPAN><BR /><SPAN>Thanks for any answer.</SPAN></BODY></HTML> Thu, 23 Jul 2009 09:24:59 GMT aleks_sh 2009-07-23T09:24:59Z https://connect.hyland.com/t5/alfresco-archive/bug-or-security-policy/m-p/239234#M192364 Hi, AllI have a problem, but don't understand it.User1 and User2 have Contributor role.At Discussion section&nbsp; - if User1 is creating message, User2 is able to add comment to it.But at Blog section - If User2 is creating message, User2 unable to add comment - Access Denied.At alfresco.log I see:11:41 Thu, 23 Jul 2009 09:24:59 GMT https://connect.hyland.com/t5/alfresco-archive/bug-or-security-policy/m-p/239234#M192364 aleks_sh 2009-07-23T09:24:59Z https://connect.hyland.com/t5/alfresco-archive/bug-or-security-policy/m-p/239235#M192365 <HTML><HEAD></HEAD><BODY><SPAN>Hi, All</SPAN><BR /><SPAN>Strange situation</SPAN><BR /><SPAN>User with permissions of Contributor can't add comments to blogpost until somebody with permissions of Manager(Collaborator) add his comment to that blogpost.</SPAN><BR /><BR /><SPAN>Any ideas?</SPAN><BR /><BR /><SPAN>Aleksandr</SPAN></BODY></HTML> Fri, 24 Jul 2009 14:27:20 GMT https://connect.hyland.com/t5/alfresco-archive/bug-or-security-policy/m-p/239235#M192365 aleks_sh 2009-07-24T14:27:20Z https://connect.hyland.com/t5/alfresco-archive/bug-or-security-policy/m-p/239236#M192366 <HTML><HEAD></HEAD><BODY><SPAN>Please see: </SPAN><A href="https://issues.alfresco.com/jira/browse/ETHREEOH-2026" rel="nofollow noopener noreferrer">https://issues.alfresco.com/jira/browse/ETHREEOH-2026</A><BR /><BR /><SPAN>Thanks,</SPAN><BR /><SPAN>Mike</SPAN></BODY></HTML> Fri, 24 Jul 2009 14:37:11 GMT https://connect.hyland.com/t5/alfresco-archive/bug-or-security-policy/m-p/239236#M192366 mikeh 2009-07-24T14:37:11Z https://connect.hyland.com/t5/alfresco-archive/bug-or-security-policy/m-p/239237#M192367 <HTML><HEAD></HEAD><BODY><SPAN>problem still unresolved in 4.0b</SPAN><BR /><SPAN>or it came back…</SPAN></BODY></HTML> Thu, 24 Nov 2011 12:21:21 GMT https://connect.hyland.com/t5/alfresco-archive/bug-or-security-policy/m-p/239237#M192367 aleks_sh 2011-11-24T12:21:21Z