Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to automatically check if a user has access to a document in nuxeo?

Go to answer
Zakariyaa
Champ in-the-making
Champ in-the-making

Monday

I need a way to quickly verify if a user has access to a document without retrieving and scanning all ACLs. Is there an API or an optimized method in Nuxeo to check access directly with a simple boolean response (true/false)?

0 Kudos
1 ACCEPTED ANSWER

Go to answer
Josh-F-Hyland
Employee
Employee
In response to Zakariyaa

Tuesday

I have to correct my previous reply, you get a 403 error if the user doesn't have access, not a 404. I don't know of any specific endpoint for this but you could certainly build an Automation Chain or Automation Script to do it. However I would suggest that you simply fetch the document; if the user doesn't have access you'll get a 403 error and can handle as appropriate. No need to a separate endpoint.

--
Hyland Sales Solution Engineer

View answer in original post

4 REPLIES 4

Go to answer
Josh-F-Hyland
Employee
Employee

Monday - last edited Monday

I'm curious about the use case. Why would you need this? If a user doesn't have access to a document, Nuxeo will simply give a 404 when that user requests it (e.g. assuming the user had the path or UUID in the first place). No search will return any document the user doesn't have access to. I.e. it's important to *not* give a reply that implies the document exists when a user has no access to it as this could be exploited. The permission layer is always on in Nuxeo, there's no way for a user to access something they don't have access to.

--
Hyland Sales Solution Engineer
0 Kudos

Go to answer
Zakariyaa
Champ in-the-making
Champ in-the-making
In response to Josh-F-Hyland

Tuesday - last edited Tuesday

Thank you for your response. My use case requires checking outside of Nuxeo, using only the user's ID and document ID, to determine if the user has read access before making any API calls to Nuxeo. Is there an API or a method in Nuxeo that allows checking if a user has read permission on a document without retrieving all ACLs, ideally returning a simple true/false response? Additionally, is it possible to integrate a mechanism within Nuxeo that precomputes read permissions for each document, for example, by listing all users who have read access in advance and updating this information periodically?

0 Kudos

Go to answer
Josh-F-Hyland
Employee
Employee
In response to Zakariyaa

Tuesday

I have to correct my previous reply, you get a 403 error if the user doesn't have access, not a 404. I don't know of any specific endpoint for this but you could certainly build an Automation Chain or Automation Script to do it. However I would suggest that you simply fetch the document; if the user doesn't have access you'll get a 403 error and can handle as appropriate. No need to a separate endpoint.

--
Hyland Sales Solution Engineer

Go to answer
Zakariyaa
Champ in-the-making
Champ in-the-making
In response to Josh-F-Hyland

Wednesday

Ok thanks !

0 Kudos
Getting started

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC