Access rights for global groups on certain pages in subwikis

flux · January 17, 2024, 9:06pm

Hi there,

Maybe I am doing this the wrong way but I am confused on where I am going wrong. I have a main wiki set up and then a sub wiki which a global group have access to.

I am trying to apply strict access controls to a page in the sub wiki where only a local group has access. When I try to apply rights on the page using the “Rights: Page & Children”, I apply deny access to the global group but then apply view/edit/delete for the local group.

I would think that this would deny the global group from the page and its children and only allow the local group to edit/view/delete, but that does not seem to take place. Am I missing something here or is there a better way to go about this?

Thanks!

pjeanjean · January 18, 2024, 12:25pm

Hello,

You should not need to explicitly deny access rights to achieve what you want.
Following https://www.xwiki.org/xwiki/bin/view/Documentation/AdminGuide/Access%20Rights/ :

When a right has been allowed at a given level, it gets implicitly denied to anyone else at the same level.

Setting view/edit/delete rights to a specific group should automatically deny these rights to users not in this group, with the only exception being admins.

flux · January 18, 2024, 7:55pm

@pjeanjean Thanks for the help. I realized I had other rights that were interfering with the page rights.