Details
-
Improvement
-
Resolution: Won't Do
-
Neutral
-
None
-
None
-
None
Description
If one wants to give access only to one of the subtrees, like /demo-project, one has also to give access to the root which can be done but then the user can read everything. The main problem is that one can't give access to one single page only (it always includes the subpages).
Today we solve that by using /$ which uses the fact that the AccessManager uses regular expressions. But this is also ugly because the system then creates the very weird permission /$/*.
Either the tree should be able to handle this implicitly (list all the children the user can see no matter if he has access to the root node) or find a solution for MAGNOLIA-1555.
Checklists
Attachments
Issue Links
- depends upon
-
MAGNOLIA-1555 security: acl should consider node types
-
- Closed
-
- is related to
-
MGNLSTK-550 demo users: overwork the groups and roles
-
- Closed
-