Hi, I'm trying to solve an authentication/security problem for something like an extranet. Can't get it to work.
Example:
Page A - Should be accessible by everyone
Page B - Shoud be accessible only by User A
Page C - Should only be accessible only by User B
My thought to solve this was:
1) Remove the BUILT-IN\Everyone-role from "Permissions for all sites".
2) Add read for BUILT-IN\Everyone-role to the site root and Page A.
3) Add read for User A and deny for BUILT-IN\Anonymous to Page B.
4) Add read for User B and deny for BUILT-IN\Anonymous to Page C.
The problem is that even when I perform the step in #1 the Everyone-role still exists on all content below the site. On the site node the role is gone, but not on the underlying content pages.
Am I going about this the wrong way?
As a workaround I also tried to add deny for Authenticated and read for only the User for each page. Doesn't seem to work to combine like that either.
The site is on Lemoon 4.2.0
(also I want to do the same setup on the files, same problem there that Everyone doesn't disappear even though I remove it on site level)
Thanks
