ACL - Delete Permissions

rebecca75 · ‎10-10-2018

I have a BR that removes the permissions before adding a new permissions on the Managed Document. However, it isn't deleting since the user doesn't have delete access.

However, I'm not sure how to update this ACL to provide delete properly...right now it's giving edit, but not sure what that line is calling and from where...

Any ideas on how to update this script to allow Edit, but then allow Delete for my script ONLY?

VigneshMC · ‎10-10-2018

You why edit this ACL?, you can create an another table level delete ACL with condition as you like. It has to pass just one ACL per operation, to allow access.

Thanks

View solution in original post

rebecca75 · ‎10-10-2018

Not same name, the Script Include that I just created is prefixed with TH.

Prateek kumar · ‎10-10-2018

You dont have to create a Scriapt include, just create a new ACL. PFA

Replace with your required roles and conditions. Let me know how it goes.

Please mark my response as correct and helpful if it helped solved your question.
-Thanks

rebecca75 · ‎10-10-2018

I thought of that, but then it gives the users delete rights on the UI side and I only want the BR to delete the records, not the users.

Prateek kumar · ‎10-10-2018

Can you not use gs.hasRole() and execute the BR?

Please mark my response as correct and helpful if it helped solved your question.
-Thanks

rebecca75 · ‎10-11-2018

I found the issue - the parent table 'dms_document_permission' is where I needed to add 'admin' permissions for the BR to excute successfully. I didn't realize that dms_document_group_permission was an extension of dms_document_permission. It works now! Thanks!!!!