does anybody have an advice or even have experience with this topic:
A Role should only be able to only view and edit one page of the Node Tree.
A backend user has a role assigned and this role should be able to view and edit the only site “Site 2.1”.
I know the behavior for permissions are the following :
- if no privilegeTarget is defined for a Node ( no access restrictions) - it looks like an “allow” to the user
- if you define a privilegeTarget the security framework takes over for this resource. It checks if there is a privilege for the currently logged in user and the given privilege target. If there is no privilege found, it defaults to DENY .
Is there something like “isNoDescendantNodeOf” for ‘Neos\Neos\Security\Authorization\Privilege\NodeTreePrivilege’?