I basically need to use an admin account to check if a user has access to projects by running a script.
Project access has been set through ACLs, but user's have been added to groups, and those groups added to the ACLs, so the viewacls command doesn't give me information for a specific user.
Hello Juan,
Depending on your use case, there may be an alternative command. The "evaluateacl" diag can determine whether a permission is granted or denied:
im diag --diag=evaluateacl <Principal Name> <ACL Name> <Permission Name>
im diag --diag=evaluateacl joe si:project:id:Project1:SubA OpenProject
Output looks like below:
Result: DENIED. ACL used: null
Generally speaking, users only need OpenProject and FetchRevision permissions to see a Source project so you could use that diag to check for permissions. Note: The Principal Name flag can use user names or group names.
EDIT: Running diag commands requires the Admin or AdminServer permission so it is not much different from having to use your previous scripts via an admin account. This diag may be quicker to check if the use case is simple, however.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
