Expand my Community achievements bar.

SOLVED

User permission restrictions on parent page, but not on child page

Avatar

Level 2
Level 2
3/8/21 3:00:42 PM

I'd like to restrict editing on the top page of our site, as well as a few key child pages, while at the same time allowing users to edit pages beneath these key pages.

For example:

example.com/homepage is our parent page that we want to restrict access to.

example.com/homepage/topic1 is a child page that anyone can edit as necessary.

 

Because of cascading permissions, if I deny access to /homepage, then I'm denying access to all child pages.

I can, of course, deny access to /homepage, and then manually allow access to all the child pages, but this seems like a nightmare to maintain. 

 

Do I have any options here? We recently had an issue where an author modified our landing page without checking in with the team that owns the landing page. I'm trying to figure out the best way to restrict access to the landing page, so other ideas are welcome. 

 

Thanks!

Topics

Topics help categorize Community content and increase your ability to discover relevant content.

Experience Manager Permissions

Views

1.5K

Replies

4
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Level 8
Level 8
3/8/21 4:30:17 PM

You can create a new group called "super users" and assign permissions to access only the parent page, the people who are in that group can only edit the parent page.

 

 

View solution in original post

Views

1.5K

Replies

1
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
4 Replies

Avatar

Correct answer by
Level 8
Level 8
3/8/21 4:30:17 PM

You can create a new group called "super users" and assign permissions to access only the parent page, the people who are in that group can only edit the parent page.

 

 

Views

1.5K

Replies

1
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Level 2
Level 2
3/11/21 6:19:41 AM
In response to raj_mandalapu
I'm not sure this is the right answer. I want a group that can edit all of the pages, and a group that can edit all of the pages under that parent, but not the parent. Your solution would create a group that can only edit the parent. Am I missing something?

Views

1.4K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Community Advisor
Community Advisor
3/8/21 7:22:09 PM

Instead of going for User permission and ACL why are you not using locking and unlocking of the page at template level or even page level?

This should work fine in your scenario.

 

Views

1.4K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Employee Advisor
Employee Advisor
3/9/21 7:54:00 AM

You can use rep:glob for this requirement.  See below for more details:

 

Screen Shot 2021-03-09 at 10.52.26 AM.png

 

Example: If you set rep:glob="" then it will only apply the permissions to the current node and not on the child nodes.

 

[1] https://jackrabbit.apache.org/oak/docs/security/authorization/restriction.html

 

Views

1.4K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Multifield Rollout in AEM 6.5.20.0 on-prem Solved

Views

114

Likes

0

Replies

3
The dynamic table previews correctly in HTML, but when converted to PDF, the page is cut off.

Views

117

Likes

0

Replies

4
How to Render the different version of Header for Specific Pages Using Experience Fragments in AEM?

Views

177

Likes

0

Replies

7
AEM 6.4 to 6.5 upgrade - Core Image component not working

Views

86

Likes

0

Replies

1
Redirection is not working in Dispatcher Environment

Views

92

Likes

0

Replies

3