Expand my Community achievements bar.

Dive into Adobe Summit 2024! Explore curated list of AEM sessions & labs, register, connect with experts, ask questions, engage, and share insights. Don't miss the excitement.
SOLVED

What are the aggregate privilege rep:write contains?

Avatar

Level 4

I have a use case where i need to restrict the custom group for deleting the page. And also custom group should be able author the pages like adding components and removing the those. I'm using repo init script for this restriction. the issue is when i try to restrict group for deletion its also disabling the modification.

1 Accepted Solution

Avatar

Correct answer by
Level 5

Try using below combination

jcr:read\,jcr:versionManagement\,jcr:modifyProperties\,jcr:addChildNodes\,jcr:lockManagement\,jcr:nodeTypeManagement

And JFYI, below is the mapping for permissions (might help)

"READ": ["jcr:read"]

"MODIFY": ["jcr:modifyProperties","jcr:lockManagement","jcr:versionManagement","jcr:removeChildNodes","jcr:removeNode","jcr:addChildNodes","jcr:nodeTypeManagement"]

"CREATE": ["jcr:addChildNodes","jcr:nodeTypeManagement"]

"DELETE": ["jcr:removeChildNodes","jcr:removeNode"]

"READACL": ["jcr:readAccessControl"]

"EDITACL": ["jcr:modifyAccessControl"]

"REPLICATE": [“crx:replicate"]

View solution in original post

2 Replies

Avatar

Correct answer by
Level 5

Try using below combination

jcr:read\,jcr:versionManagement\,jcr:modifyProperties\,jcr:addChildNodes\,jcr:lockManagement\,jcr:nodeTypeManagement

And JFYI, below is the mapping for permissions (might help)

"READ": ["jcr:read"]

"MODIFY": ["jcr:modifyProperties","jcr:lockManagement","jcr:versionManagement","jcr:removeChildNodes","jcr:removeNode","jcr:addChildNodes","jcr:nodeTypeManagement"]

"CREATE": ["jcr:addChildNodes","jcr:nodeTypeManagement"]

"DELETE": ["jcr:removeChildNodes","jcr:removeNode"]

"READACL": ["jcr:readAccessControl"]

"EDITACL": ["jcr:modifyAccessControl"]

"REPLICATE": [“crx:replicate"]