Hyland Community
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Custom Security policy

Go to answer
a_c
Confirmed Champ
Confirmed Champ

‎11-04-2019 07:21 PM

Hi, I need to block deletion of specific document types by user groups. I understand I need to write a custom security policy in order to achieve this, but I'm not sure how. So far, I have a java class extends AbstractSecurityPolicy implements SecurityPolicy that overrides the checkPermission method that returns an Access class which grants or denies permission. Is this the right way to do it? Or will it simply block the read permissions? Any help would be appreciated.

Thanks in advance

0 Kudos
1 ACCEPTED ANSWER

Go to answer
Gregory_Carlin
Elite Collaborator
Elite Collaborator

‎11-05-2019 10:34 AM

Hello,

I strongly advise you to watch https://university.nuxeo.com/learn/course/external/view/elearning/171/SecurityPolicies. It contains all the needed information with a practical use case (sources are available to help you).

General steps are:

  1. Create your project with Nuxeo CLI
  2. Initialize your JAVA Class
  3. Write the CheckPermission method logic
  4. Build your SQLQueryTransformer
  5. Create an XML Extension
  6. Create your marketplace package

Regards

View answer in original post

0 Kudos
3 REPLIES 3

Go to answer
Gregory_Carlin
Elite Collaborator
Elite Collaborator

‎11-05-2019 10:34 AM

Hello,

I strongly advise you to watch https://university.nuxeo.com/learn/course/external/view/elearning/171/SecurityPolicies. It contains all the needed information with a practical use case (sources are available to help you).

General steps are:

  1. Create your project with Nuxeo CLI
  2. Initialize your JAVA Class
  3. Write the CheckPermission method logic
  4. Build your SQLQueryTransformer
  5. Create an XML Extension
  6. Create your marketplace package

Regards

0 Kudos

Go to answer
a_c
Confirmed Champ
Confirmed Champ
In response to Gregory_Carlin

‎11-05-2019 02:33 PM

Thank you for your answer! But I have another issue

0 Kudos

Go to answer
Gregory_Carlin
Elite Collaborator
Elite Collaborator

‎11-05-2019 02:50 PM

Security Policies are core securities: therefore, they are not "controlled" by the UI, leading by the kind of erro you have (the typical 403 - PERMISSION DENIED). So I would advice to implement UI logics (with Javascript to implement your conditions, in nuxeo-filter elements) in addition to the security policies.

0 Kudos
Getting started

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC
li.common.scroll-to.top