11-30-2017 03:53 AM
I am using alfresco-content-services 5.2.0 enterprise version.
I have defined my custom role CUSTOM_DELETE something like below, here custom:baseAspect is my custom aspect.
<permissionSet type="custom:baseAspect" expose="selected">
<permissionGroup name="CUSTOM_DELETE_Permission" expose="false" allowFullControl="false"/><permissionGroup name="CUSTOM_DELETE" allowFullControl="false" expose="true">
<includePermissionGroup type="custom:baseAspect" permissionGroup="CUSTOM_DELETE_Permission" />
<includePermissionGroup type="sys:base" permissionGroup="Read" />
<includePermissionGroup type="sys:base" permissionGroup="WriteProperties"/>
<includePermissionGroup type="sys:base" permissionGroup="Delete"/></permissionGroup>
<permission name="_CUSTOM_DELETE_Permission" expose="false">
<grantedToGroup permissionGroup="CUSTOM_DELETE_Permission"/>
</permission></permissionSet>
Given :
I am creating any content which is having aspect (custom:baseAspect
) under public site with assigning permission like this
NODE_1 : CUSTOM_DELETE : GROUP_1
Expected Behavior :
Now if I login with user which under GROUP_1
, he/she should be able to Read
content, Write/Edit Properties
and Delete
the content.
Actual Behavior :
User is able to Read
content, Delete
content but not able to Write/Edit properties
.
Am I doing something wrong?
Regards, Vishal Z.
11-30-2017 11:24 AM
With which interface are you testing the behaviour? I.e. is it only that the action to edit properties is not showing up in the Share user interface or do you really get an access denied error when trying to modify the properties?
12-04-2017 11:32 PM
Hi @Alex Faust,
Thanks for your response. I am sorry for delay reply. Yes, it is s not showing up edit properties action in the Share user interface.
12-07-2017 02:36 AM
Hi
I suspect the UI is checking for Write rather than WriteProperties. Can you do the operation via the public API?
Andy
Explore our Alfresco products with the links below. Use labels to filter content by product module.