Re: [magnolia-user] Search functionality

[claudia]

Thanks, Jan, for your answer.

I have obtained the desired result (search results not showing for the anonymous role) by explicitly denying access in the Website ACL of the anonymous role.

I had previously configured a URL ACL (for the anonymous role) that denied access to the same resources (sub pages, basically) but they still showed in the search results. I also configured a URI Filter that redirected users. Once the anonymous user clicked on the search result, he was redirected to the proper page. Still, the user got a 'preview' of the forbidden content.

Does the search functionality restriction work with Website ACLs, but not URL ACLs? Is this by design?

Thanks again for your response.

Claudia Guerrero

-----<user-list-ow...@magnolia-cms.com> wrote: -----

To: "Magnolia User-List" <user-list@magnolia-cms.com>
From: Jan Haderka
Sent by:
Date: 01/11/2011 12:18AM
Subject: Re: [magnolia-user] Search functionality

The restriction is totally transparent. If the user is not allowed to see particular page(content), such page will not appear in search results at all. You do not need to configure anything for it apart from setting permissions for the users themselves. To set permissions look at the security section of the documentation and/or experiment with the settings in AdminCentral in the Security/Roles menu ... when you open role for editing, on the second tab you can set Access Control Lists (ACLs).

HTH,

Jan