Re-assigning to Chris for more investigation on production, based on Tres's comment:
""" I just verified manually that the changes to the ACL get propagated to the 'allowed' index, as long as the changes involve the 'view' permission::
$ bin/debug ... root['communities']['default'].docid 492927271 x = root['communities']['default'].docid root.catalog['allowed']._rev_index[x] OOSet(['group.KarlAdmin', 'group.KarlStaff', \ u'group.community:default:members', \ u'group.community:default:moderators'])
I then visited http://localhost:6543/communities/default/edit_acl.html, and granted user 'phreddy' the 'view' permission. Back in the debugger::
root._p_jar.sync() root.catalog['allowed']._rev_index[x] OOSet(['group.KarlAdmin', 'group.KarlStaff', \ u'group.community:default:members', \ u'group.community:default:moderators', u'phreddy'])
So I don't know what "doesn't seem to be working" means. """
Re-assigning to Chris for more investigation on production, based on Tres's comment:
"""
I just verified manually that the changes to the ACL get propagated to
the 'allowed' index, as long as the changes involve the 'view' permission::
$ bin/debug es']['default' ].docid es']['default' ].docid 'allowed' ]._rev_ index[x] 'group. KarlAdmin' , 'group.KarlStaff', \ community: default: members' , \ community: default: moderators' ])
...
root['communiti
492927271
x = root['communiti
root.catalog[
OOSet([
u'group.
u'group.
I then visited http:// localhost: 6543/communitie s/default/ edit_acl. html,
and granted user 'phreddy' the 'view' permission. Back in the debugger::
root._p_jar.sync() 'allowed' ]._rev_ index[x] 'group. KarlAdmin' , 'group.KarlStaff', \ community: default: members' , \ community: default: moderators' , u'phreddy'])
root.catalog[
OOSet([
u'group.
u'group.
So I don't know what "doesn't seem to be working" means.
"""