Expand my Community achievements bar.

Don’t miss the AEM Skill Exchange in SF on Nov 14—hear from industry leaders, learn best practices, and enhance your AEM strategy with practical tips.
Read More & Register today!
SOLVED

Getting Deny in json response if I unchecked the modify permission to user.

Avatar

Level 8
Level 8
7/4/22 8:04:44 AM

akshaybhujbale_0-1656946880437.png

Please refer this

Views

507

Replies

5
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
7/4/22 8:39:36 AM
In response to akshaybhujbale

@akshaybhujbale That's expected behaviour - when you update ACL's those are stored under node as respective node as rep:policy as you see below and that's reflect in response of json 
Screen Shot 2022-07-04 at 11.37.31 AM.png

View solution in original post

Views

498

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
5 Replies

Avatar

Community Advisor
Community Advisor
7/4/22 8:12:34 AM

Hi @akshaybhujbale ,

Would be appreciated if you give us a bit more background information, what you are trying to do and what is the exact issue.

Regards,

Santosh

Views

504

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 8
Level 8
7/4/22 8:27:52 AM
In response to SantoshSai

In the page json response we get Access policy info for that page.

if admin removed modify permission on useradmin portal then in json responce getting deny as shown in screenshot.

Views

501

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Correct answer by
Community Advisor
Community Advisor
7/4/22 8:39:36 AM
In response to akshaybhujbale

@akshaybhujbale That's expected behaviour - when you update ACL's those are stored under node as respective node as rep:policy as you see below and that's reflect in response of json 
Screen Shot 2022-07-04 at 11.37.31 AM.png

Views

499

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Community Advisor
Community Advisor
7/4/22 10:03:21 PM

In addition to what @SantoshSai has explained, if you want to remove deny you can go to Touch UI permissions page : /security/permissions.html/principal/everyone and delete the deny permission.

I am not sure what URL you are using to get JSON but to avoid rep:policy in JSON response, you can hit model.json of the page(eg /content/we-retail.model.json ) or jcr:content.infinity.json(/content/we-retail/jcr:content.infinity.json)

Views

489

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Community Advisor
Community Advisor
7/5/22 3:24:50 AM

@akshaybhujbale

The permission model comes with the additive & inheritance model i.e.

  • If there are multiple groups assigned to the user the combined permission will be applicable to the user, and
  • if there is permission on the parent group then that will float to its child group.

 

Permission over here are applied as:

  • Implicit = Indirect
  • Explicit = Direct

Now if you are unchecking any checkbox over here, that means you might be overriding the permission coming from the parent group. And, therefore having the "DENY" permission states that over here the permissions are removed explicitly from that group/user.

shaileshbassi_0-1657016297763.png

Hope this helps!

 

Thanks

 

Views

478

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Richtext data type not working in Content Fragment Model Solved

Views

97

Likes

0

Replies

1
Optimizing Daily API Calls in AEM: A Better Solution? Solved

Views

151

Likes

0

Replies

5
RTE full options not appearing in minimized view AEM 6.5 cloud

Views

60

Likes

0

Replies

1
Serve Images in Next-Gen Format i.e in WebP and AVIF

Views

185

Likes

0

Replies

2
How to Implement OAuth 2.0 in AEM as the Client Application | AEMasCS

Views

117

Likes

0

Replies

2