Hi Toby, thank you for your response. I was also under the same impression
that the order of ACEs matter. I posted the JSON dumps in my previous posts
also. Anyway, here are how the ACLs setup at each level (JSON dumps).
*Root folder:*
{"administrators":{"principal":"administrators","granted":["jcr:all"],"order":0},"everyone":{"principal":"everyone","granted":["jcr:read","jcr:readAccessControl"],"order":1}}
*"content" folder (Child of Root folder):*
{"everyone":{"principal":"everyone","granted":["jcr:removeChildNodes","jcr:read"],"order":0}}
*"child" folder (Child of content folder):*
{"Managers":{"principal":"Managers","granted":["jcr:read"],"denied":["jcr:removeNode","jcr:modifyAccessControl","jcr:versionManagement","jcr:nodeTypeManagement","jcr:modifyProperties","jcr:addChildNodes"],"order":0},"everyone":{"principal":"everyone","denied":["jcr:read"],"order":1}}
You can see "order" attribute in the JSON responses. Clearly "Managers" is
ordered at 0 and everyone is ordered at 1 for "test" folder. But the user
who belongs to "Managers" group cannot see this "child" folder.
--
View this message in context:
http://jackrabbit.510166.n4.nabble.com/Group-membership-is-not-honoured-tp4660059p4660065.html
Sent from the Jackrabbit - Users mailing list archive at Nabble.com.
