Skip to Content.
Sympa Menu

grouper-users - Re: [grouper-users] Noob Question about VIEW permissions

Subject: Grouper Users - Open Discussion List

List archive

Re: [grouper-users] Noob Question about VIEW permissions


Chronological Thread 
  • From: Andrew Morgan <>
  • To: Jeffrey Williams <>
  • Cc: Grouper-Users <>
  • Subject: Re: [grouper-users] Noob Question about VIEW permissions
  • Date: Tue, 10 Apr 2018 08:41:06 -0700 (PDT)
  • Ironport-phdr: 9a23:lX19IxX5ahqKpAmxE2PJXrdOmz7V8LGtZVwlr6E/grcLSJyIuqrYYx2Ct8tkgFKBZ4jH8fUM07OQ7/i7HzRYqb+681k6OKRWUBEEjchE1ycBO+WiTXPBEfjxciYhF95DXlI2t1uyMExSBdqsLwaK+i764jEdAAjwOhRoLerpBIHSk9631+ev8JHPfglEnjWwba98IRmssQndqtQdjJd/JKo21hbHuGZDdf5MxWNvK1KTnhL86dm18ZV+7SleuO8v+tBZX6nicKs2UbJXDDI9M2Ao/8LrrgXMTRGO5nQHTGoblAdDDhXf4xH7WpfxtTb6tvZ41SKHM8D6Uaw4VDK/5KpwVhTmlDkIOCI48GHPi8x/kqRboA66pxdix4LYeZyZOOZicq/Ye94RWGhPUdtLVyFZDI2yb5UBAfcDMuhboYnyqVQBogelCAmwGO/j1iNEimPs0KEk1ekqDAHI3BYnH9ILqHnZsNP1O7oIUe+rwqjD0DLNb/RM2Tfy8ofIdA0qrPaJXbJ3a8rRxlMgFwXeg1WXs4zlJC+V2v4TvGeG8uptTOSigHMkpQFpujWj29kgh4rTio4Izl3J+z91zYYvKdGmVkJ2Y8aoHIZOuyyZLYd6X8cvTm9ytCs10LEKpJy2cDQMxZ863RDQceaHfJKN4h/7VOaePzN4hHV9dbKkghay7VCgxvTiVsmszFpGszBJksLNtnACzRDT7dKHReVy/kem3zaPzBzT5ftYIU8qj6bUNYMuwqMompoSt0TMADP2lV3rgKOIdUgo4PWk5uDpb7n8ppKQLZF4hh/8P6g2n8ywG+U4MgwAX2iB/uS80aXu/Uj+QLVQgf05iK/ZvYvdJcQBva65HxVZ3Zg+5BaiFzumysgXnWEbLFJZfxKKl4fpO0vJIPDlFfewnU6snC52x/DdILLhGI7NI2PHkLfgZrZ991VcxBQpwdBe4ZJUFq8OIOj1WkDvqNzUEAU1PBKpzOb6W51B0dY8VGyBGKKIeJzTtVuJ7+c0a72OapAUvDL8ItA44fXhy3I1hAlOU7Ou2M4+bnyiE+suBkKDbnPqyoMEFn0FtwwWS/bxlBuPXSMFNCX6ZL41+jxuUNHuNozEXI34xeXZhCo=

On Tue, 10 Apr 2018, Jeffrey Williams wrote:

I'm working on a permissions model for a group of users to allow them to
use a group without seeing its membership.

When I apply the view permission for a group, the target user can see that
the group exists, can't see the membership, but also cannot add it to
groups of their own for use.

To contrast, a user with read permissions can add the group as a member of
target group. The user with view permissions of that same target group can
see the member group, but not the resulting indirect member names(I think
only blank rows).

Should users have read permissions in order to add a group as a member? Is
there something I can configure or have misconfigured to adjust that
behavior?

If your users need to add group FOO to one of their groups, then they need READ privileges on group FOO.

If a person with VIEW privileges were able to add group FOO to their own group, they could discover the membership of group FOO.

Andy



Archive powered by MHonArc 2.6.19.

Top of Page