Expand my Community achievements bar.

SOLVED

Getting Deny in json response if I unchecked the modify permission to user.

Avatar

Level 7
Level 7
7/4/22 8:04:44 AM

akshaybhujbale_0-1656946880437.png

Please refer this

Views

410

Replies

5
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
7/4/22 8:39:36 AM
In response to akshaybhujbale

@akshaybhujbale That's expected behaviour - when you update ACL's those are stored under node as respective node as rep:policy as you see below and that's reflect in response of json 
Screen Shot 2022-07-04 at 11.37.31 AM.png

View solution in original post

Views

401

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
5 Replies

Avatar

Community Advisor
Community Advisor
7/4/22 8:12:34 AM

Hi @akshaybhujbale ,

Would be appreciated if you give us a bit more background information, what you are trying to do and what is the exact issue.

Regards,

Santosh

Views

407

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 7
Level 7
7/4/22 8:27:52 AM
In response to SantoshSai

In the page json response we get Access policy info for that page.

if admin removed modify permission on useradmin portal then in json responce getting deny as shown in screenshot.

Views

404

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Correct answer by
Community Advisor
Community Advisor
7/4/22 8:39:36 AM
In response to akshaybhujbale

@akshaybhujbale That's expected behaviour - when you update ACL's those are stored under node as respective node as rep:policy as you see below and that's reflect in response of json 
Screen Shot 2022-07-04 at 11.37.31 AM.png

Views

402

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Community Advisor
Community Advisor
7/4/22 10:03:21 PM

In addition to what @SantoshSai has explained, if you want to remove deny you can go to Touch UI permissions page : /security/permissions.html/principal/everyone and delete the deny permission.

I am not sure what URL you are using to get JSON but to avoid rep:policy in JSON response, you can hit model.json of the page(eg /content/we-retail.model.json ) or jcr:content.infinity.json(/content/we-retail/jcr:content.infinity.json)

Views

392

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Community Advisor
Community Advisor
7/5/22 3:24:50 AM

@akshaybhujbale

The permission model comes with the additive & inheritance model i.e.

  • If there are multiple groups assigned to the user the combined permission will be applicable to the user, and
  • if there is permission on the parent group then that will float to its child group.

 

Permission over here are applied as:

  • Implicit = Indirect
  • Explicit = Direct

Now if you are unchecking any checkbox over here, that means you might be overriding the permission coming from the parent group. And, therefore having the "DENY" permission states that over here the permissions are removed explicitly from that group/user.

shaileshbassi_0-1657016297763.png

Hope this helps!

 

Thanks

 

Views

381

Replies

0
Sign in to like this content

Total Likes

Translate
Translate