Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Access Denied when creating content from a scheduled task

mark_smithson
Champ in-the-making
Champ in-the-making

‎08-29-2007 06:59 AM

We have a scheduled task which imports news from an xml feed into a WCM sandbox.

This works fine on a windows Alfresco instance, but throws an Access Denied error when on our test server (linux).

org.alfresco.repo.security.permissions.AccessDeniedException: Access Denied.  You do not have the appropriate permissions to perform this operation.
   at org.alfresco.repo.security.permissions.impl.ExceptionTranslatorMethodInterceptor.invoke(ExceptionTranslatorMethodInterceptor.java:53)
   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:176)
   at org.alfresco.repo.audit.AuditComponentImpl.auditImpl(AuditComponentImpl.java:256)
   at org.alfresco.repo.audit.AuditComponentImpl.audit(AuditComponentImpl.java:191)
   at org.alfresco.repo.audit.AuditMethodInterceptor.invoke(AuditMethodInterceptor.java:69)
   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:176)
   at org.springframework.transaction.interceptor.TransactionInterceptor.invoke(TransactionInterceptor.java:107)
   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:176)
   at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:210)
   at $Proxy15.addAspect(Unknown Source)
   at com.dm.alfresco.AlfrescoContentCreatorImpl.saveToAlfresco(AlfrescoContentCreatorImpl.java:79)

The code used to create the content is as follows:

String path = AVMUtil.buildSandboxRootPath(sandbox) + "/ROOT/WEB-INF/resources/content/" + contentPath ;

      createFile(path, name, edit);
      
    String filePath = path + '/' + name;
    NodeRef fileNodeRef = AVMNodeConverter.ToNodeRef(-1, filePath);
    
    // apply the titled aspect - title and description
    Map<QName, Serializable> titledProps = new HashMap<QName, Serializable>(2, 1.0f);
    titledProps.put(ContentModel.PROP_TITLE, name);
    titledProps.put(ContentModel.PROP_DESCRIPTION, "Imported from News Feed");
    this.nodeService.addAspect(fileNodeRef, ContentModel.ASPECT_TITLED, titledProps);
    
    // attach the form is supplied 
    if (StringUtils.isNotEmpty(this.formName)){
       Map<QName, Serializable> formProps = new HashMap<QName, Serializable>(2, 1.0f);
       formProps.put(WCMAppModel.PROP_PARENT_FORM_NAME, this.formName);
       formProps.put(WCMAppModel.PROP_ORIGINAL_PARENT_PATH, path);
       this.nodeService.addAspect(fileNodeRef, WCMAppModel.ASPECT_FORM_INSTANCE_DATA, titledProps);
    }
    
    // get a writer for the content and put the file
    ContentWriter writer = this.contentService.getWriter(fileNodeRef, ContentModel.PROP_CONTENT, true);
    writer.setMimetype("text/xml");
    writer.setEncoding("UTF-8");
    writer.putContent(content);

createFile is as follows

private void createFile(String path, String name, boolean edit) {
      try {
         this.avmService.createFile(path, name);
      }
      catch (AVMExistsException e){
         if (!edit){
            createFile(path, randomise(name), edit);
         }
      }
   }

the calling code does a login using this code

this.authenticationService.authenticate(username, password.toCharArray());

The exception stacktrace originates from this line

this.nodeService.addAspect(fileNodeRef, ContentModel.ASPECT_TITLED, titledProps);

The user is configured as a content contributor on the web project and the sandbox we are importing to is the sandbox for the user.

Is there anything else we should be checking, or doing?
Labels:
0 Kudos
2 REPLIES 2

gavinc
Champ in-the-making
Champ in-the-making

‎08-29-2007 09:38 AM

I can't explain why this would work on a Windows instance and not a linux instance, but either way the error is a permission denied error from the Alfresco repository.

The addAspect call requires "WriteProperties" permission which the Contributor role does not have, they can only add new items. Therefore the user performing the import of the news feed will need a higher privileged role i.e. Content Publisher or Manager.

Hope that helps.
0 Kudos

mark_smithson
Champ in-the-making
Champ in-the-making

‎08-29-2007 11:43 AM

Thanks - that has done the trick.

I have checked on the windows install and the user has ContentContributor permissions, but works fine. I have also checked using the node browser to see if they had any other permissions but they do not.

I guess this may be a bug. Is there anywhere else, I can check their permissions?

Mark
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC