Expand my Community achievements bar.

Enhance your AEM Assets & Boost Your Development: [AEM Gems | June 19, 2024] Improving the Developer Experience with New APIs and Events
SOLVED

What are the aggregate privilege rep:write contains?

Avatar

Level 4

I have a use case where i need to restrict the custom group for deleting the page. And also custom group should be able author the pages like adding components and removing the those. I'm using repo init script for this restriction. the issue is when i try to restrict group for deletion its also disabling the modification.

1 Accepted Solution

Avatar

Correct answer by
Level 5

Try using below combination

jcr:read\,jcr:versionManagement\,jcr:modifyProperties\,jcr:addChildNodes\,jcr:lockManagement\,jcr:nodeTypeManagement

And JFYI, below is the mapping for permissions (might help)

"READ": ["jcr:read"]

"MODIFY": ["jcr:modifyProperties","jcr:lockManagement","jcr:versionManagement","jcr:removeChildNodes","jcr:removeNode","jcr:addChildNodes","jcr:nodeTypeManagement"]

"CREATE": ["jcr:addChildNodes","jcr:nodeTypeManagement"]

"DELETE": ["jcr:removeChildNodes","jcr:removeNode"]

"READACL": ["jcr:readAccessControl"]

"EDITACL": ["jcr:modifyAccessControl"]

"REPLICATE": [“crx:replicate"]

View solution in original post

2 Replies

Avatar

Correct answer by
Level 5

Try using below combination

jcr:read\,jcr:versionManagement\,jcr:modifyProperties\,jcr:addChildNodes\,jcr:lockManagement\,jcr:nodeTypeManagement

And JFYI, below is the mapping for permissions (might help)

"READ": ["jcr:read"]

"MODIFY": ["jcr:modifyProperties","jcr:lockManagement","jcr:versionManagement","jcr:removeChildNodes","jcr:removeNode","jcr:addChildNodes","jcr:nodeTypeManagement"]

"CREATE": ["jcr:addChildNodes","jcr:nodeTypeManagement"]

"DELETE": ["jcr:removeChildNodes","jcr:removeNode"]

"READACL": ["jcr:readAccessControl"]

"EDITACL": ["jcr:modifyAccessControl"]

"REPLICATE": [“crx:replicate"]