Expand my Community achievements bar.

Learn about Edge Delivery Services in upcoming GEM session
Register!
SOLVED

Create User group similar to forms-power-users without access to crx/packmgr/index.jsp

Avatar

Level 5
Level 5
11/9/20 8:42:06 AM

Hi,

Is there a way to create a new user group that has full access to create/modify/delete/upload forms, but does not have access to the crx package manager?

Currently, when adding a user to the forms-power-users, it provided the necessary access to work with forms, but it also provides access to server:port/crx/packmgr/index.jsp. 

I tried using form-users group but it gives the following error when the user in this group tries to upload a form.

Test12345_0-1604939878164.png

Thanks

Views

920

Replies

3
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Employee Advisor
Employee Advisor
11/9/20 12:31:37 PM

The problem is that you give only access to repository areas. But the permission do not apply directly for functionality. That means if you want to effectively disable the package manager for some users, you need to remove the permissions from the repository, which the package manager requires to work properly (it's /etc/packages).

 

There is no real solution, if your users need to have read and/or write access to /etc/packages, but are not allowed to use the package manager. The only chance is then block access to the package manager, but that's often not possible, because others need to access it.

View solution in original post

Views

864

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
3 Replies

Avatar

Community Advisor
Community Advisor
11/9/20 12:10:49 PM

You can create a custom group and give all the permissions which has 
forms-power-users and just remove the crx/de read 
check the permissions tab and give all the permissions.

Views

889

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Correct answer by
Employee Advisor
Employee Advisor
11/9/20 12:31:37 PM

The problem is that you give only access to repository areas. But the permission do not apply directly for functionality. That means if you want to effectively disable the package manager for some users, you need to remove the permissions from the repository, which the package manager requires to work properly (it's /etc/packages).

 

There is no real solution, if your users need to have read and/or write access to /etc/packages, but are not allowed to use the package manager. The only chance is then block access to the package manager, but that's often not possible, because others need to access it.

Views

865

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply