Retrieving/Understanding rights for a document with Trusted Content Services

Hello,

I have a Documentum 6.5 setup that uses the Trusted Content Services (TCS) module. I have added some users/groups to "Additional Permissions", "Access Restrictions", "Required Groups" and "Required Group Set" sections in the Permissions for a document (see attached image).

Below is my DQL query and results for the acl_name of the same document. Looking at the result below how can I determine whether a group/user has access to the document? E.g. Does "docu" has access to the document? How can I know that a user must be member of "admingroup" before he/she can access the document? Do I need to retrieve additional columns to get complete information for TCS?

select r_accessor_name,r_accessor_permit,r_is_group,r_accessor_xpermit,acl_class from dm_acl where object_name='dm_4500000280000d17' order by r_accessor_permit

r_accessor_name                   r_accessor_permit r_is_group    r_accessor_xpermit acl_class
--------------------------------                       -----------------      ------------             ------------------ ------------
admingroup                                                    0             1                   0             0
another stinky group                                       0             1                   0             0
docu                                                              0             1                   0             0
docu                                                               1             1                   0             0
dm_mediaserver                                             1             0                   0             0
dm_world                                                      3             0                   0             0
docu                                                             5             1                   0             0
dm_owner                                                     7             0                   0             0
(8 rows affected)

Thanks in advance.

Find more posts tagged with

Comments

lastnitescurry

Fetch the object via DFC and use the following IDfSysObject methods (From DFC API docs. Optional install when you install DFC)

int getPermit()
Returns an integer number that corresponds to the access permission level that the current user has for the object.

int getPermitEx(String accessorName)

Returns an integer number that corresponds to the access permission level that the specified user or group has for the object.

int getXPermit(String accessorName)
Returns the extended permissions, in integer form, for a specified user or group using the computed attribute _xpermit.

commstar

Brian,

Thanks for the suggestion. In the above example the user should me member of the "admingroup" to access the document. Using the methods on my document object (IDfSysObject) I see getPermitEx(admingroup) = 1 and getXPermit(admingroup) = 3. Actually, I see values for all accessors equal to 1 and 3.

I'm not sure if I'm getting the correct values using these methods. Do these methods take TCS into account?

Thanks.