We have
a Folder on which Security has been defined to grant "Write" rights to Users having a defined Role,
two Users with the defined Role, so being granted "Write" rights on the Folder.
Expected system behavior was that
both of them would be enabled to Create documents in the Folder and Edit any document that were created in the Folder, irrespective of actual User who created the document,
but only the User that created a given Document would be enabled to Delete it.
This behavior is supported by the fact that the Security of documents created in the folder
inherits the Security profile of the Folder (thus with "Write" rights granted to Users with the specified Role ), but
includes in addition explicitly full Delete rights granted to the User that created the Document.
The system, instead,
allows both Users Delete the Documents from the Folder,
but
- while the User that created the Document can Purge the Document from its Trash
- the User that was not the creator of the document cannot Purge the Document from the Trash and receives an error "The system generated an error: "OKM-002009(PurgeDocument): Document access denied""
(Comment: The Document can be Purged from that User's Trash only by a System Administrator)
I think that consistent application of the Security specified on Documents should prevent "Deletion" of Documents as part of the functional checks performed in the Taxonomy Folder.
Best regards,
Armando
(The tests have been made with version 6.2.4.)
a Folder on which Security has been defined to grant "Write" rights to Users having a defined Role,
two Users with the defined Role, so being granted "Write" rights on the Folder.
Expected system behavior was that
both of them would be enabled to Create documents in the Folder and Edit any document that were created in the Folder, irrespective of actual User who created the document,
but only the User that created a given Document would be enabled to Delete it.
This behavior is supported by the fact that the Security of documents created in the folder
inherits the Security profile of the Folder (thus with "Write" rights granted to Users with the specified Role ), but
includes in addition explicitly full Delete rights granted to the User that created the Document.
The system, instead,
allows both Users Delete the Documents from the Folder,
but
- while the User that created the Document can Purge the Document from its Trash
- the User that was not the creator of the document cannot Purge the Document from the Trash and receives an error "The system generated an error: "OKM-002009(PurgeDocument): Document access denied""
(Comment: The Document can be Purged from that User's Trash only by a System Administrator)
I think that consistent application of the Security specified on Documents should prevent "Deletion" of Documents as part of the functional checks performed in the Taxonomy Folder.
Best regards,
Armando
(The tests have been made with version 6.2.4.)
Attachments
Testing documentation
(260.5 KiB) Downloaded 259 times
(260.5 KiB) Downloaded 259 times
