grouper-users - Re: [grouper-users] Noob Question about VIEW permissions
Subject: Grouper Users - Open Discussion List
List archive
- From: Andrew Morgan <>
- To: Jeffrey Williams <>
- Cc: Grouper-Users <>
- Subject: Re: [grouper-users] Noob Question about VIEW permissions
- Date: Tue, 10 Apr 2018 08:41:06 -0700 (PDT)
- Ironport-phdr: 9a23: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
On Tue, 10 Apr 2018, Jeffrey Williams wrote:
I'm working on a permissions model for a group of users to allow them to
use a group without seeing its membership.
When I apply the view permission for a group, the target user can see that
the group exists, can't see the membership, but also cannot add it to
groups of their own for use.
To contrast, a user with read permissions can add the group as a member of
target group. The user with view permissions of that same target group can
see the member group, but not the resulting indirect member names(I think
only blank rows).
Should users have read permissions in order to add a group as a member? Is
there something I can configure or have misconfigured to adjust that
behavior?
If your users need to add group FOO to one of their groups, then they need READ privileges on group FOO.
If a person with VIEW privileges were able to add group FOO to their own group, they could discover the membership of group FOO.
Andy
- [grouper-users] Noob Question about VIEW permissions, Jeffrey Williams, 04/10/2018
- Re: [grouper-users] Noob Question about VIEW permissions, Andrew Morgan, 04/10/2018
- Re: [grouper-users] Noob Question about VIEW permissions, Rob Gorrell, 04/10/2018
- RE: [grouper-users] Noob Question about VIEW permissions, Hyzer, Chris, 04/10/2018
- Re: [grouper-users] Noob Question about VIEW permissions, Rob Gorrell, 04/10/2018
- Re: [grouper-users] Noob Question about VIEW permissions, Andrew Morgan, 04/10/2018
Archive powered by MHonArc 2.6.19.