Expand my Community achievements bar.

Don’t miss the AEM Skill Exchange in SF on Nov 14—hear from industry leaders, learn best practices, and enhance your AEM strategy with practical tips.
SOLVED

Access control

Avatar

Level 2

Hi

I'm trust someone will be able to assist me. Please excuse me if my question is trivial, I'm quite new to Experience Manager and CRXDE lite.

I have created a group (e.g. TestingGrp) and users (e.g. Mathandos, Andrew) and associated the users to the group. In CRXDE Lite I create a folder (e.g. TestingFolder) and I want all the users in TestingGrp to only have read access to TestingFolder. When Mathandos or Andrew logs into CRXDE Lite they should only view TestingFolder and nothing else, no other nodes or folders should be seen by these users.

Another thing is when I do create an access under path it shows null.

I'm hoping my question is clear enough as to what I'm trying to achieve.

Thanks in advance

Mathandos

1 Accepted Solution

Avatar

Correct answer by
Former Community Member

Can you try enabling the access to the root directory '/' and then try removing the access to the folders that you don't want listed. Access to CRX root is necessary for CRXDE to list the tmp folder.

Please reach out to me for any other queries

View solution in original post

8 Replies

Avatar

Level 5

You can refer http://dev.day.com/docs/en/cq/current/administering/security.html. For TestingGrp you have to give read access to TestingFolder through security console. Note that you might have to give read access at root as well and then deny access to subsequent folder keeping root and TestingFolder read accessed checked. Please use CQ admin UI to change this permission.

Yogesh

Avatar

Former Community Member

Step 1: Go to users console (You can go from the Welcome screen)

Step 2: Double click on the user group

Step 3: CQ Folders are displayed at the right side

Step 4: Check access option for each of the folders. If you uncheck Read permission of a folder, it becomes invisible in CRXDE for that particular user group.

 

Hope this answers your question !!! It is pretty straightforward

Avatar

Level 2

Thank you, your responses are appreciated.

I have followed suggestions from both of you, but only one problem, when I login CRXDE as user Mathandos I don't see the folder I have read access to. All I get is an empty node.

Am I missing something?

Avatar

Level 10

Can you attach screenshot of permission,  Members added to group.

Avatar

Level 2

Herewith attached the screenshots of the group's members, and permission. I have also included the crxde screenshot of one of the users when logged in.

Avatar

Correct answer by
Former Community Member

Can you try enabling the access to the root directory '/' and then try removing the access to the folders that you don't want listed. Access to CRX root is necessary for CRXDE to list the tmp folder.

Please reach out to me for any other queries

Avatar

Level 10

From screen shot no permission given to TestingFolder

Avatar

Level 2

It works yay! I would like to extend my appreciation to everyone who assisted. Thank you a million times.

The following has evaluated to null or missing: ==> liqladmin("SELECT id, value FROM metrics WHERE id = 'net_accepted_solutions' and user.id = '${acceptedAnswer.author.id}'").data.items [in template "analytics-container" at line 83, column 41] ---- Tip: It's the step after the last dot that caused this error, not those before it. ---- Tip: If the failing expression is known to be legally refer to something that's sometimes null or missing, either specify a default value like myOptionalVar!myDefault, or use <#if myOptionalVar??>when-present<#else>when-missing. (These only cover the last step of the expression; to cover the whole expression, use parenthesis: (myOptionalVar.foo)!myDefault, (myOptionalVar.foo)?? ---- ---- FTL stack trace ("~" means nesting-related): - Failed at: #assign answerAuthorNetSolutions = li... [in template "analytics-container" at line 83, column 5] ----