Allowing a specific branch for a specific role

Using Neos & Flow
1

Usecase
a specific role of editors should only have access to one branch in the page tree.

Example
A role should only be allowed to edit Page 2 and its subpages of the following tree:

  • Site Home
    • Page 1
    • Page 2
    • Page 3

Current setup

  1. Add NodeTreePrivileges for the homepage && 1st level pages (excluding Page 2).
  2. Add NodeTreePrivileges for Page 2 separately.
  3. Add EditNodePrivileges for descendants of the home page.
  4. Add EditNodePrivileges for descendants of Page 2.

Editor: assign privileges 1, 2, 3 and 4
Page 2 restricted role: assign privileges 2 and 4

Flaws

  • When an editor adds a new 1st level page this will be visible (though not editable) for the restricted role.
  • Cumbersome to setup.

Desired setup

  1. Add NodeTreePrivileges for all descendants of Home.
  2. Add NodeTreePrivileges for Page 2.

Editor: assign 1 and 2
Restricted role: assign 2

Current result
The restriction is set correctly for the restricted role but the page tree doesn’t show the Page 2 part of the branch.

Desired result
Only show the Page 2 part of the branch

2

Hey @hphoeksma,

there is a WIP on https://github.com/neos/neos-development-collection/pull/477