AnsweredAssumed Answered

New Role and ACL_METHOD

Question asked by steel on Mar 1, 2006
Latest reply on Feb 19, 2008 by andy
Hi,

I am creating a new role to allow a person to act as an administrator and add  (create new) users and groups to their homespace. Temporarily I have attempted to elevate the priviledges of the Coordinator Role to allow creating a new person and group.

I did the following:

1. Set a globalPermission in permissionDefinitions.xml to give "ROLE_COORDINATOR" full control.

2. Added ACL_METHOD.ROLE_COORDINATOR to all the services required when creating a user in public-services-security-context.xml. 
For example this is one: org.alfresco.service.cmr.security.AuthorityService.createAuthority=ACL_METHOD.ROLE_COORDINATOR,ACL_METHOD.ROLE_ADMINISTRATOR

I added ACL_METHOD.ROLE_COORDINATOR to the following services:
AuthorityService.createAuthority
AuthorityService.addAuthority
AuthorityService.removeAuthority
AuthorityService.deleteAuthority

AuthenticationService.createAuthentication

PersonService.setPersonProperties
PersonService.createPerson

This these modifications I am still getting the "Access Denied" do not have enough permission to perform the action.

Any help would be great!

thanks.

-Steel

Outcomes