AnsweredAssumed Answered

Permission role - Create and Modify

Question asked by rluberti on Feb 15, 2008
Latest reply on Feb 26, 2008 by andy

I was able to create a new role that can only read and modify content…..but
I couldn't create a role that can only read and create content …
I tried in this way:


<permissionSet type="cm:cmobject" expose="selected">

     <!– A Depositor can only read/create content –>

      <permissionGroup name="Depositor" allowFullControl="false" expose="true" >

           <includePermissionGroup type="sys:base" permissionGroup="ReadProperties"/>

           <includePermissionGroup type="sys:base" permissionGroup="ReadChildren"/>

           <includePermissionGroup type="sys:base" permissionGroup="ReadContent"/>

           <includePermissionGroup type="sys:base" permissionGroup="CreateChildren"/>

           <includePermissionGroup type="sys:base" permissionGroup="LinkChildren"/>

  <permissionSet type="cm:content" expose="selected">

      <permissionGroup name="Depositor" extends="true" expose="true"/>


   <!– Admin can do anything to any ndoe                                                –>

   <globalPermission permission="FullControl" authority="ROLE_ADMINISTRATOR"/>


   <!– For now, owners can always see, find and manipulate their stuff                  –>

<!–   <globalPermission permission="FullControl" authority="ROLE_OWNER"/>–>


   <!– Unlock is granted to the lock owner                                              –>

   <globalPermission permission="Unlock" authority="ROLE_LOCK_OWNER"/>


   <!– Check in is granted to the lock owner                                            –>

   <globalPermission permission="CheckIn" authority="ROLE_LOCK_OWNER"/>


   <!– Cancel check out is granted to the locak owner                                   –>

   <globalPermission permission="CancelCheckOut" authority="ROLE_LOCK_OWNER"/>

I see the menu action "Create content" but using it I get :
"A system error happened during the operation: Access Denied. You do not have the appropriate permissions to perform this operation."

Can I actually have "create content" permissions without "modify permissions" ?

thanks in advance