I played little more with ACLs and discover this. If Tom is member of DEV and USR group and if ACEs are arranged like this, DEV – jcr:write USR – jcr:read the Tom has jcr:read privilege( witch is wrong).
But if I ACEs arrange like this, DEV – jcr:read USR – jcr:write the Tom has jcr:write privilege(right one). My conclusion is that Tom gets privileges from LAST principal in ACL, in this case USR group. Any ideas how to fix this? -- View this message in context: http://jackrabbit.510166.n4.nabble.com/AccessControlManagerget-Privileges-path-method-problem-tp3790533p3847131.html Sent from the Jackrabbit - Users mailing list archive at Nabble.com.
