Hi,
I am creating a new role to allow a person to act as an administrator and add (create new) users and groups to their homespace. Temporarily I have attempted to elevate the priviledges of the Coordinator Role to allow creating a new person and group.
I did the following:
1. Set a globalPermission in permissionDefinitions.xml to give "ROLE_COORDINATOR" full control.
2. Added ACL_METHOD.ROLE_COORDINATOR to all the services required when creating a user in public-services-security-context.xml.
For example this is one: org.alfresco.service.cmr.security.AuthorityService.createAuthority=ACL_METHOD.ROLE_COORDINATOR,ACL_METHOD.ROLE_ADMINISTRATOR
I added ACL_METHOD.ROLE_COORDINATOR to the following services:
AuthorityService.createAuthority
AuthorityService.addAuthority
AuthorityService.removeAuthority
AuthorityService.deleteAuthority
AuthenticationService.createAuthentication
PersonService.setPersonProperties
PersonService.createPerson
This these modifications I am still getting the "Access Denied" do not have enough permission to perform the action.
Any help would be great!
thanks.
-Steel
