Replicating Permissions from Author to Publishers

We have a package that contains nodes under /etc/forms/... and we use this to capture some data from the end user.  To allow the entering of data from the user, there's a node of primaryType rep:ACL at /etc/forms/mysite/rep:policy.  This has a child node of primaryType rep:GrantACE, and some other properties to allow anonymous users to input this data for us to capture.  This all works well in the Author environment.  However, I can't seem to replicate these permission nodes to the Publisher environments.
Is there a way to replicate permissions from Author to Publisher?  All of the other nodes in the package seem to replicate correctly, just not the permissions.  I've tried creating a new package with only those permission nodes in them and installing on the Publisher directly, but I get the error:
This node already exists: /etc/packages
Can anyone explain the correct way of dealing with replicating permissions from the Author to Publishers?
Thanks,
K

I just had a quick read of the docs for Closed User Groups and I'm not sure they fit the bill of what we're trying to achieve here.  At this stage, we're happy for anonymous users to enter the data on this form.  The documentation states:
Closed User Groups (CUGs) are used to limit access to specific pages that reside within a published internet site. Such pages require the assigned members to login and provide security credentials.
The issue is that we need to give anonymous users rights to this section, but can't seem to 'automate' (ie replicate) this permission from Author to Publishers even though it's clearly included in a package.  I don't want to go down the path of manually setting up permissions on each Publisher if it can be avoided - I'd really like to be able to have it set somewhere and replicate across, as per the rest of the JCR.
Is this possible?
Thanks,
K

Similar Messages

  • Pages not displaying properly in Publisher instances as we activated the page from Author

    HI All,
    Pages not displaying properly in Publisher instances as we activated the page from Author. In author it is working well but in Pulisher it is showing first 2 lines of the page and then showing error as
    Apache sling/2.2 Hot Spot ****** Sun OS error
    Please help me on this.IS this issue with the templates or components are we using?

    Ok, then let's go the long way and try to reduce the number of possible root causes:
    1) Is your problem reproducible on this publish? (I suppose it is)
    2) Is it reproducible on other publishs as well, which have received the same page with the same application?
    3) Can you reproduce it on other replicated pages as well?
    4) When you upload a page to such an affected publish via a content package, does this page render correctly?
    5) Does this problem appear on other environments as well?
    6) Do you use dispatcher when you get this result? Or do you get it when you request the page directly of CQ5?
    7) What's the HTTP statuscode when you render this page? You can see it in the request.log of CQ5.
    If you change logging via Felix Console, you don't need to restart the instance.
    kind regards,
    Jörg

  • How to replicate bundle from Author to Publish

    Hi,
    I have published a java bundle by right clicking and select 'Build Bundle' on the 'bnd' file, the bundle gets deployed properly on the 'Author' instance, but the 'publish' instance deploy failed.
    The code currently works in 'Author'.
    How do I replicate the bundle from Author to Publish? Does 'Build Bundle' only deploy the bundle to 'Author'? If yes, step by step how do I replicate the bundle to Publish?
    Thanks.

    The canonical answer would be: Put the bundle into a CRX package (path: /apps/<appname>/install) and then upload the package to the instances you want to deploy the package.
    If you want to transport that package via replication, it will work. But be aware, that then you deploy it to all publishs more or less in parallel, which might be an unwanted behaviour. The usual trick is to partition your publishs into 2 distinct sets. One set is active and receives requests by the loadbalancer, the other is idle and does not receive any requests from the loadbalancer in front of them.
    Then reconfigure the replication agents pointing to the active set of publishs, and change their port to an unused one. This prevents that the replication is successfully working to this publishs, but the agents do still accept replication requests from the authors (but they are not executed). If you activate then the package, the package will be replicated only to the idle set of publishs and is installed there. Then switch the configuration for both sets of publishs and make the active set the idle one and vice versa. Now you only need to wait until the replication queues to the (new) idle set of publishs is emptry and the package is installed. Now all publishs have the new package installed and you can configure all replication agents back to "normal" settings.
    That's a common deployment strategy used by many projects. If done properly you don't face any problems on your live site.
    cheers,
    Jörg

  • How do I get the Principals as well as the Permissions from Policy?

    I know how to get the permissions from a Policy:
      MyPolicy.getPermissions()
    How do i get the Principals and Permissions?
    If I have:
    grant MyPrincipalClass "Jeff" {
       permission MyPerm "doIt"
    how do I then (in my code) get both the permission and the Principal?
    I am currently doing this:
    java.security.PermissionCollection pc = pol.getPermissions(new java.security.CodeSource(new java.net.URL("file:/D:/JAAS/"), null));
    for (java.util.Enumeration en = pc.elements(); en.hasMoreElements(); )
                    System.out.println(en.nextElement());
    }

    In reference to your earlier question about "setting the Principal"; those responders pointed you to the JAAS documentation, and that's the answer here, too. You need to implement a Policy class that uses the JAAS Subject as a parameter to the Policy constructor as well as to the getPermissions() method. The Subject contains the Principals that have been added to it by (your) involved LoginModules. I'm still using JAAS 1.0 on JDK 1.3, and am real not familiar yet with the JDK 1.4 version of Security, but; I think the same applies there. Keep in mind; the "grant" only declares the permissions for a Principal; it's up to the LoginModules to establish the identity (identities) of the authenticated Principal(s) to which those permissions are to be granted.

  • How can I migrate file shares & permissions from one volume to another on the same server?

    I am replacing a storage array and as part of that process, I need to move files/folders and Shares/permissions from one Volume to another volume within the same server.
    The server is Windows 2003 file server.  The file transfers are not a problem, moving all 40 shares with permissions etc. is my main concern because in order to maintain everything I need to change the drive letter of the new volume to match the old
    one so that links to various resources throughout the network do not break.

    Hi, 
    If you want to copy files/folders from one Volume to another volume within the same server, you could use the File Server Migration Tool (FSMT) or Robocopy to accomplish your goals. The tool can move all of the files from the shares on your original volume
    to the new volume.
    For more detailed information, you could refer to the articles below:
    File Server Migration Toolkit
    http://technet.microsoft.com/en-us/magazine/2006.10.utilityspotlight.aspx
    The File Server Migration Toolkit (FSMT) is a free download available at:
    http://www.microsoft.com/en-us/download/details.aspx?DisplayLang=en&id=10268
    Robocopy
    http://technet.microsoft.com/en-us/library/cc733145.aspx
    FSMT and Robocopy will not copy Share permissions but only NTFS permissions. So if the drive letter will not be changed, you can backup and restore the Share permission with steps here:
    Saving and restoring existing Windows shares
    http://support.microsoft.com/kb/125996
    Regards, 
    Mandy
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

  • Windows server 2008 R2 File& Folder Permissions; Ghost Permissions From "Parent Object" Assigned to Folder Owner

    Windows 2008 R2 file server: Subfolders of a particular folder have an account that has Full Control permission that are listed as inherited. That account has no permissions in the parent folder. It was, however the account that was used to copy the folders
    and their contents in there from another source and was the owner of the folder.
    In Advanced Permissions, it shows them as inherited from "Parent Object" as opposed to the folder name of the parent folder (there are some of these.) (The parent folder of the place where the problem occurs does not inherit from _its_ parent)
    I removed it as owner and yet the permissions remained. (as displayed either through the GUI or with ICACLS.)
    If I make _any_ edit in Advanced Permissions, the 'ghost' permissions then go away (e.g. add my account with full control - I'm domain admin, so have that anyway) This step seems like it should be unnecessary, but it is required in this situation.
    I've done this to 5 of about 20 subfolders and it is consistent. Folders which did not have the 'problem account' as their owner did not exhibit this characteristic.
    This affects the files within the subfolders as well.
    Oddly, adding an owner to a folder has the same effect and required the same edit before the permissions are seen. This was tested on a different drive on the same server.
    Is this an anomaly, a bug, or expected performance?

    Hi,
    Do you mean that there is an account that has Full Control permission that are listed as inherited but it doesn’t appear in the parent NFS permissions? If so, please try to uncheck the "Include inheritable permissions from this object's parent" checkbox,
    clicking Apply.
    There is a similar thread, please go through it to help troubleshoot this issue:
    NTFS: I have a user’s that's inherited from parent folder but it doesn’t appear in the Parent ACL
    http://social.technet.microsoft.com/Forums/windowsserver/en-US/6061af36-4d44-4de8-8139-d71f06d59a2c/ntfs-i-have-a-users-thats-inherited-from-parent-folder-but-it-doesnt-appear-in-the-parent-acl?forum=winserversecurity
    Regards,
    Mandy
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

  • Error while Replicating Objects from R/3 to CRM

    Hi,
    While replicating objects from R/3 to CRM (Tcode :R3AS), the status of the object is still running. When I checked in Outbound queue (Tcode:SMQ1) the status is 'SYSFAIL', when I double clicked it says "Password logon no longer possible - too many attempts". So what is the solution to it...
    I am working on CRM 5.0
    Regards,
    vimal

    Dear Vimal,
    Sorry not sure then...
    Sometimes the RFC connection is refused and use to give that particular error messgae due to:
    The old RFC library having version 6.20 automatically converted the
    password into uppercase with a size limit of 8 characters before sending it to the SAP system.
    The RFC library version 6.40 does not perform this conversion any more, because mixed case passwords upto 40 characters are now supported by SAP Basis version 7.00 (eg. NW2004s) and above. 
    So need to use upper case passwords when connecting to an SAP system having version less than 7.00. 
    But this is not valid in this scenario.
    Thanks,
    Atin

  • Exprees document update was terminated received from author "laxman"in miro

    Hi MM experts
    My user trying to create invoice wth reference po no  in miro t.code during saving system showing error Exprees document update was terminated received from author "laxman"i have checked in transaction OMRJ t.code ,there is  no overlap in number ranges.number ranges also available.in sm13 t.code i checked error shown below
    function module: MRM_INVOICE_DOCUMENT_POST
    status :Update was terminated
    Report:LMRMEU01
    Row:77
    error details class M8,NUMBER 185
    Invoice document 5105785402 2011 could not be created
    IN MIR4 t.code I CHECK THIS NO 5105785402 THIS ALREADY EXISTING INVOICE NUMBER SHOWN.WHY SYSTEM TRIGGERING
    THIS NUMBER IN SM13.PLZ SUGGEST
    Regards
    Mohan

    This type of express document may cause due to over lap of number ranges and if the same transaction is run by diff users at same time...........................
    In your case there is change in number range assignment in current number.....
    Check the last consumed number in the system and assign the coming number range in current number...
    Hope this may help you.
    BR,
    Patil

  • Express document "Update was terminated" received from author in J2IUN.

    Hi,
    Pl. help
    At the time excise utlization this message is come
    Express document "Update was terminated" received from author
    Suresh Yadav

    hi
    "For your update terminate problem please proceed accordingly
    goto SM13, there you can see the updates terminated & their logs.
    Click on one of the Updates terminated with transaction.
    Double click on the line , you will see alist of Function modules, click on the function module in red, here click on the log to see more details on the reason for update termination.
    in the dump anlysis you can see the reason for dump.
    Act as per the dump anlaysis. usuall reasons for the dump is any new changes to the program or number range error ."
    Please take help of ABAPEr for Dump analysis , if it is sytem issue take hlep of BASIS
    Thanks & Regards
    Kishore

  • Express document "Update was terminated" received from author "    "in VA21

    Dear SAP Experts,
      i just set up Output determination for quotation type. and created VA21, while coming out i am getting error
    as Express document "Update was terminated" received from author " 
    below is the dump i am getting. Could you please help me to solve this?.
    Update was terminated    
    Created       m8050032  on   06.01.2010   13:04:43 
    Update was terminated
    System ID....   E6I
    Client.......   800
    User.....   M8050032
    Transaction..   VA21
    Update key...   DD95FADEFC90F19591EF001D0915C7EC
    Generated....   06.01.2010, 13:04:42
    Completed....   06.01.2010, 13:04:43
    Error Info...   00 671: ABAP/4 processor: SYNTAX_ERROR

    Hi,
    Goto T.code ST22 - ABAP runtime error
    click today button,
    check for the error and double click to get the detailed long text
    see "How to correct the error"
    take a help of ABAPer
    Regards
    senya

  • Express document "Update was terminated" received from author in MM01

    Hi gurus,
    When we are trying to create the MM by using the t-code MM01 we are getting the error message as Express document "Update was terminated" received from author "XXXX". Based on this error we have verified the t-code SM13 and received the below details and there is no dumb in ST22.
    Update was terminated     
    Created       SOLIYAPPAN SADASIVAM  on   23.11.2011 ;  05:07:18  
    Update was terminated
    System ID....   MD1
    Client.......   500
    User.....   SSADASIVAM
    Transaction..   MM01
    Update key...   4ECC6061B2567110E10080000A795665
    Generated....   23.11.2011, 05:07:18
    Completed....   23.11.2011, 05:07:18
    Error Info...   Error inserting in table MBEW
    Please suggest me how to fix this issue.
    Thanks
    Sada

    Hi Jürgen,
    When we verified SM13 the error is occuring as below when we double click the SM13 error.
    1    MATERIAL_UPDATE_DB        V1 (no retry)     Error
    Please suggest me how to proceed further.
    Thanks
    Sada

  • Express Document "update was terminated" received from author in MIGO

    Hi All,
    We are getting the below error message at the time of goods receipt at receving plant for STO OBD delivery, when user trying to post the GR, then GR number created and when they try to open the number , then they get this error message.
    Express Document "update was terminated" received from author
    When we went in to SM13 and saw that everything is fine , there was no message in red.
    Erro details showing the s032 update error with Internal session terminated with a runtime error DBIF_RSQL_SQL_ERROR.
    Short text
        SQL error "-413" when accessing table "S032".
    What happened?
        Error Text of the Database: "SQL0413N Overflow occurred during numeric data type conversion. SQLSTATE=22003 row=1"
    Please help to solve this issue ASAP.
    Thanks,
    Muru

    Hello
    This is probably an overflow of a field on the infostructure S032.
    Please check this table for this material and plant combination and observe if there is any field with a high value.
    As a workaround, you may deactivate the updating of S032 via OMO9 to "no updating" to avoid the dump.
    Best regards,
    Caetano Almeida

  • MRKO Error : Express document "update was terminated" received from author

    Hi Gurus,
    When settling Consignment through MRKO we are getting error 'Express document "update was terminated" received from author xxxx' in ECD system.
    At workplace inbox, the error shows "Error Info...   XS 007: Address invalid".
    Please note that I am not getting any short dump at ST22 for the same error.
    My queries are:
    1. How can I create a short dump for this error....this will help in analyzing the issue.
    2. What are the probable reasons for this error can be.
    Thanks in advance for helping.
    Regards,
    MC

    Hi,
    I have tried SM13 and getting ERROR XS007(Address Invalid).
    Diagnosis says:
    The address specified is invalid or initial (address value, address type INT).
    Procedure:
    Enter a correct address that is suitable for address type INT.
    The formats are:
      1. INT (Internet Mail Address): <name>@<domain> or comment<name>@<domain> or  <name>@<domain>(comment)
      2. FAX(fax addresses): <country><number>
    ETC
    Now as already told, I have properly maintained mail-id in "Email" field & "StandardComm.Mtd" field as E-Mail  of the Vendor Master.
    The mail ID is my official ID and working.
    Please advice further.
    Regards,
    MC.

  • Error:express document "Update was terminated" received from author

    Hi All,
    I m creating shipment frm the transaction VL01.
    While creating the shimpment i am assigning one Z output type and clicking on the planning phase on the shipment.
    After that i am saving my shipment.
    At this point of time my shimpmnet is created but after this(after saving the shimpment) if i am trying to do anything it is giving me the below error.
    Express document "Update was terminated" received from author "Sachin Yadav".
    Kindly help why i m gettng this error. How to remove this error.
    Regards
    Sachin

    SAP is telling you that the transaction failed and a rollback has been executed, due to some catastrophic error in the system.  These often arise from errors in exit coding....check ST22 to see if you can find anything...there may be a clue there....otherwise start looking at the changes you just made for the source of the error.
    This error occurs, most likely, because during the actual save to database operation, or because of something in follow-on processing launched during the save step (like a new background task for form output or something like that) an fatal error is occurring and SAP is detecting that and rolling back the body of work that was just committed to the database.

  • Reset Permissions from Single-User Mode

    I believe I have accidently removed the permissions from my iMac. I can access single-user mode and need desperately for someone to walk me through how to reset the permissions (I get a blue screen when I try to boot). Please help.

    JMT001 wrote:
    I believe I have accidently removed the permissions from my iMac.
    what do you mean? what EXACTLY did you do? did you change permissions on the top level of the hard drive to no access?
    if so see this link
    http://discussions.apple.com/message.jspa?messageID=2087835
    if it's something else explain what you've done.

Maybe you are looking for

  • IPhone 6 plus stuck in recovery mode after trying to download latest iOS update

    why did this happen?  How to fix?  Can't get phone to restore.

  • Ensure one row only is set as default

    We have a Customers table. The default customer is 'CASH SALE'. Our business rules require one and one only customer be the default customer, but the default customer can be changed from CASH SALE to any other customer. Our business rules do not allo

  • Acquisition value negative in Depriciation Area 01

    When i am trying to post a revenue recived from from insurence company it is giving the error : " Acquision value negative in derpiciation area 01", even though their is value showing in asset explorer. Please suggest the possible solution. Thanks &

  • Process Chain Arrangement

    Dear All,          I am working on process chains. There is this parent process chain which is already made with its blocks(which represents sub chains). The parent chain runs once everyday(scheduled) and has been running fine till yesterday. I have

  • Process of ordering stacks at commerce/shipping.asp

    Hello, I have set up the e-commerce package and I tried to make an ordering of some products. The process of ordering stacks at the shipping phase (this means that there is no button continue for steping to billing) with the following output: "Freigh