Hi,

I am struggling to understand, where are we handling user accesses for item type? Is there any layer to handle accesses and do validation in CM?

Hey,

access in CM8 is primarily controlled through Access Control Lists (ACL). However, there are some layers of granting access involved.

1.) Users have a maximum set of privileges assigned to them. Users can not get more access rights than this maximum set allows, regardless what's being defined in specific ACLs

2.) ACLs consist of a list of pairs of users / groups and their associated PrivilegSet.

3.) ACLs are assigned to ItemTypes and their corresponding PartTypes in the ItemType definition (and some other objects in CM8).

4.) A set of custom coded Library Server user exists can overwrite CM's internal ACL based mechanisms.

So, what specific access a particular user has on an ItemType and the item content stored in it, can be a bit tricky to evaluate.

Hope this helps a bit ...

Sven

Hi Sanket, 

Couple of points. CM 8.5 has been end of support since April 2020 - see IBM product lifecycle - IBM Support.

Information about user access and validation may be found in the documentation - https://www.ibm.com/docs/en/search/user%20validation?scope=SSRS7Z_8.7.0. 

Thanks,