Expand my Community achievements bar.

SOLVED

how to setup a new user group with the following requirements? (see details inside)

Avatar

Level 9
Level 9
11/10/21 9:39:15 PM

I want to create a new group that has the following access

  1. The group should have full access (except delete) to /content/mysite and anything under it (example: full access except delete to /content/mysite/site-header/header)
  2. The group should have read-only access to this exact path => /content/mysite/en
  3. The group should have full access (except delete) to any child pages/folder inside /content/mysite/en (example: full access except delete to /content/mysite/en/about)
  4. The group should should be able to create pages under /content/mysite/en

I tried the thing below and it works except for no.4. Any thoughts how it can be done?

 

 

(done using /useradmin)
- path: /content/mysite
type: allow
permissions: read,modify,create,acl_read,acl_edit,replicate

--------

(done inside CRX/DE)
- path: /content/mysite/en
type: deny
privileges: jcr:all
repGlob: ""
- path: /content/mysite/en
type: deny
privileges: jcr:all
repGlob: /jcr:*
- path: /content/mysite/en
type: allow
privileges: jcr:read
repGlob: ""
- path: /content/mysite/en
type: allow
privileges: jcr:read
repGlob: /jcr:*

 

 

 

Views

547

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
11/10/21 11:34:24 PM

Hi @jayv25585659 

 

In the 2nd point, you gave read only access to the group for "/content/mysite/en" and in 4th point you are trying to create pages under the same path which is contradictory. 

 

Thanks,

Kiran Vedantam.

View solution in original post

Views

542

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
2 Replies

Avatar

Correct answer by
Community Advisor
Community Advisor
11/10/21 11:34:24 PM

Hi @jayv25585659 

 

In the 2nd point, you gave read only access to the group for "/content/mysite/en" and in 4th point you are trying to create pages under the same path which is contradictory. 

 

Thanks,

Kiran Vedantam.

Views

543

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Community Advisor
Community Advisor
11/11/21 2:43:06 AM

Hi @jayv25585659 

 

As @Kiran_Vedantam pointed, there is a conflict so that step 4 will not work.

 

In case if you want to restrict access at /en level for few members, then you can have different group where you can restrict access at /en and add respective members to the group. 

 

Thanks

Views

535

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Passing parameters to Sling Model methods Solved

Views

127

Likes

0

Replies

2
The dynamic table previews correctly in HTML, but when converted to PDF, the page is cut off.

Views

88

Likes

0

Replies

3
Adobe Client Data Layer compatibility with React + Core Components

Views

99

Likes

0

Replies

1
Integrate splunk with aemaacs

Views

62

Likes

0

Replies

3
How to Render the different version of Header for Specific Pages Using Experience Fragments in AEM?

Views

135

Likes

0

Replies

3