Expand my Community achievements bar.

Don’t miss the AEM Skill Exchange in SF on Nov 14—hear from industry leaders, learn best practices, and enhance your AEM strategy with practical tips.

Can CLosed User Group override the allow or deny ACL on that node?

Avatar

Level 7

Hi Team 

Case 1:

1. 10 Users have jcr:read allow access on content/dam folder.

2. in dam I have created MyFolder

3. On Myfolder I gave only 4 out of 10 in Closed User/Group CUG permission.

4. So In effect will remaining 6 will have access to myfolder? or not

Case 2:

1. 10 Users have jcr:read deny on content/dam

2. in dam I have created MyFolder

3. On Myfolder I gave only 4 out of 10 in Closed User/Group CUG permission.

4.  So will 4 will able to access  MyFolder?

 

 

I am doing this on auther instance.

 

 

 

3 Replies

Avatar

Community Advisor

Hi,

CUG groups are for the end user who are accessing the publishers.

You should not merge both. Keep your author rights separated from end user rights.



Arun Patidar

Avatar

Level 7

@arunpatidar 

So do you mean we can give permission to end users only through CUG.?

and ACL are only for auther instance?

Also one question related to this can we create assets and sites on publisher?

Avatar

Community Advisor

So do you mean we can give permission to end users only through CUG.? - Yes

and ACL are only for author instance? - Not completely true but for end user, we use CUG

Also one question related to this can we create assets and sites on publisher? Technically yes but use Author to create site and assets and replicate/publish/activate to publish instance. Publish should not be use because it is serving end users and it may have immediate consequences if you do make changes on publish.



Arun Patidar