AEM 6.5 - Adding JCR access policy NOT CUG

Question

I got stuck on CUG and this is NOT what I am looking for.

We require to add jcr:write access for a single user to a new node that we create also through code. All I can find is code examples prior 6.3 change to CUG, but these are no longer working

How can we still use AccessControlList.addEntry(principal, privileges, true) in AEM 6.5 or is this no longer allowed and should we user CUG?

(I understand this only is used to grant Read access to nodes)

Vijayalakshmi_S · Accepted Answer

Hi @eric_stricker,Use AccessControlList.addAccessControlEntry(principal, privileges) followed by setPolicy using AccessControlManager API.Code snippet:try {Authorizable authorizable = userMgr.getAuthorizable(userIdStr); Principal userPrincipal = authorizable.getPrincipal();// prinicipal object from user/group idPrivilege[] writePrivileges = new Privilege[] { acmMgr.privilegeFromName(Privilege.JCR_WRITE) };   // JCR_WRITE privilege objectAccessControlPolicyIterator itr = acmMgr.getApplicablePolicies(pageNode.getPath());   // pageNode -> node for which we are trying to set policywhile (itr.hasNext()) {AccessControlPolicy policy = itr.nextAccessControlPolicy();if (policy instanceof AccessControlList) {AccessControlList acl = (AccessControlList) policy;acl.addAccessControlEntry(userPrincipal, writePrivileges); // creates ACE acmMgr.setPolicy(pageNode.getPath(), acl); // adds ACL to the desired node}}session.save();}catch (RepositoryException e) {LOG.error("Repository Exception={}", e.getMessage());}Reference:https://docs.adobe.com/docs/en/spec/jsr170/javadocs/jcr-2.0/javax/jcr/security/AccessControlList.html#addAccessControlEntry(java.security.Principal,%20javax.jcr.security.Privilege[])

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded