Hello there
I now start to interact with the permission part …
A few notes and questions to this:
There is a “strange” behavior to inherited permissions which is probably a bug … I have:
Group A that contains User A
Group B that contains User B
Group “Employee” that contains both User A and B
Page “Root” : Group Employee Read, Comment, Edit
Page “Subpage of Root”: No Rights
Expected behavior: User A and B are able to Edit
Result: OK
Page “Subpage of Root”: Group A Read, Comment, Edit
Expected behavior: User A is able to Edit, User B has no access at all
Result: OK
Page “Subpage of Root”: Group A Read, Comment
Expected behavior: User A is NOT able to Edit, User B has no access at all
Result: not OK, since explicit permissions set to Group A, but inherited permission still apply from group “Employee” (probably since user A is also part of the Employee group)
I believe this is not how it should behave … my understanding is, that if there are any explicit permission on a page, this will rule out any inherited permissions, which is not the case here …
Unrelated Suggestion:
There is already a Info box on both, “Page” and “Page&Children” Admin Page emphasizing on the different sections… Maybe make it a warning or error box for the Page&Children section …
Another:
Why is the “admin” right only available on “Page & Children” and not on in the “Page” section?
On this page:
there is mentioning of “Default status”. I assume this relates to a default setup of xWiki e.g. the default permission of the “XWikiAllGroup” Or is there any other implicit implications of this like if there are no settings at all, it is deny or allow? Don’t have an unaltered instance to play …
Note: I took the liberty to add a tabular view of the permission on the page above - doesn’t look as nice as in xWiki 11. If you don’t deem it useful, just revert the page version …
Another thing related to permissions: Group memberships …
To update a group membership, one need to edit the group (page). But if one does hit “Cancel” on that page, changes to the group membership are still applied, E.g. after add/remove, every time a new version is generated … not sure if this is the intended behavior … maybe I asked already … don’t remember
Thanks