Adobe Experience Manager Sites & More

@SantoshSai 

we are using netcentric tool for permissions.

I couldn't find an attribute / condition that takes in a node property value for checking the status.

Are you aware of any such rule condition in netcentric that I can use to achieve property-based condition?

If netcentric doesn't allow these types of rules, then is there any other way to achieve the filter?

Hi @VishnuRe3,

Yeah, Netcentric ACL Tool doesn't support conditional rule evaluation based on node properties like jcr:content/visibility. It's limited to path- and node-type-based rules.

If metadata-based filtering is critical for folders, here are a few approaches that come to mind at the moment:

• Restructuring the DAM folder hierarchy so that permission is tied to location (e.g., /approved, /unapproved)

• Or using a custom solution outside Netcentric ACL - such as manual policy injection or UI-based filtering (though not secure for enforcement).

Santosh Sai

Hi, @SantoshSai 
could you explain more on how to set Allow if jcr:content/visibility == "approved". I'm trying to implement it but in de ACL the restrictions all start with rep:<something> and I don't know if I'm in the wrong place.

My requirement is that I have folder of products with some CF inside and for the CF only metadata driven permissions work like a charm but now I need to organize folders under products because one product can have more than one CF and other subfolders. Ad if I have products/producA, products/broductB and products/productC and than I have userX and userY. Lets say that userX see the productA and productC and userY see the productB and productC. Mor than that if one of them creates new product he should see that new product and haw a possibility to extend that product to the other user. 
With metadata it was super easy but I don't see it working for folders with metadata schema 😞 
Can someone explain if I'm doing something wrong or it is not implemented for folders?