Hi, I have granted "read" access to a "role" for some resource, but denied "read" to a "user" in that "role". The grant & deny were done in the order stated here. I was expecting that the "user" would be denied read access to the resource, but it does have read access. Looks like since the "read" for the "role" is first in the ACL, the user has "read" access. Is this the expected behavior?
Thanks in advance, Vic HiH
