Regd:UAL(user access list) access assumptions
785198Apr 11 2011 — edited Apr 15 2011Hi All,
We are using UAL(user access list) in our application and during that we have come up with some queries regarding the access.
we are using ps3 and we are testing this from web
Assume that User1 is coming with (RWDA) and User2(RWD) access on the particular Security group(SG)for which we have enabled the ACL
Creation
1.User1 has created a folder with user2 being added under ACL and given (RWDA) with author metadata field being entered as user1.
a) user2 will not be able to add the new content directly as he is getting the following error(Content item <undefined> was not successfully checked in. You have insufficient privileges to assign the content item to user 'test1')
b)user2 can create a folder inside user1 folder and can create content under it.
2.If user1 has created a folder with user2 being added under ACL and given (RWDA) access with author field being left blank.
a)user2 will be able to create the content as well as folder under the user1 folder itself.
Deletion
1.user2 can delete any content item in the ablove scenarios as his effective permission would be intersection of (RWD) from ucm and (RWDA) from UAL irrespective of the author field who has created it.
Now the point is
When the user2 can't create the content when the author field is being set then how can he delete the content .
Ideally the user2 shouls be able to add the content as well as he is granted (RWDA) permission on that particular folder.
Can you please tell us if we are missing something
Thanks,
Yashwanth