Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Consumer permissions to all users through globalPermission

lista
Star Contributor
Star Contributor

‎10-22-2013 10:47 AM

Hi,

basically, because of other issues, I need to have permission inheritance turned off, and still have a group that has read permission to the whole repository.

Now, similarly to how we have globalPermission to allow administrators full access defined in permissionModel.xml, I was hoping I could to the same for some other group, with consumer/read permission. But that does not work.

Am I completely missunderstanding what this is supposed to do? Do you have any other advices as to how to achieve what I'm trying to?

Thanks!
Labels:
0 Kudos
3 REPLIES 3

eswbitto
Confirmed Champ
Confirmed Champ

‎10-22-2013 12:30 PM

I think some clarity is needed in your setup. You can go into the repository and for each site you can turn off inheritance perm. Then just manually add your groups with the consumer level access. That's basically read only.
0 Kudos

lista
Star Contributor
Star Contributor

‎10-22-2013 01:42 PM

I'm not sure I follow you; sure I can apply permissions to each node, but that's what I'm trying to avoid.
I still think the globalPermissions approach should work.

"Global Permission - a permission or permission group assigned to an authority regardless of the node. A global permission takes precedence over node specific ACLS. If "bob" were granted the global permission "read" then "bob" would have the "read" permission for everything, regardless of any ACLs set on any nodes."

http://wiki.alfresco.com/wiki/Security_and_Authentication
0 Kudos

lista
Star Contributor
Star Contributor

‎09-12-2014 07:54 AM

Long time no see.

Basically, if you have this piece of configuration ("FullControlTest" is an exact copy of "FullControl") everything works as expected, administrators still have full access.


<!–<globalPermission permission="FullControl" authority="ROLE_ADMINISTRATOR"/>–>
<globalPermission permission="FullControlTest" authority="ROLE_ADMINISTRATORS"/>


If you alter that to read this:


<!–<globalPermission permission="FullControl" authority="ROLE_ADMINISTRATOR"/>–>
<globalPermission permission="FullControlTest" authority="GROUP_MYGROUP"/>


Members of the "MYGROUP" do not have full control.

Any ideas why?
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC