question

Ethan K. G avatar image
Ethan K. G asked

Group Policy: allow member to manipulate files, but not objects

What I try to implement is letting members upload and download group files, but can not read or write group objects. The default group Administrators & Members roles seem doesn't work like this way. How to customize the group policy, any hint or document I can refer to?

CloudScriptentities
10 |1200
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

1 Answer

·
Rick Chen avatar image
Rick Chen answered

There is no detailed documentation about Group Policy at this moment. By default, the group members are not allowed to write to group files or objects but are allowed to read the group files and objects. In your case, you can add the following statements to your group policy

{
    "Action": "*",
    "Effect": "Allow",
    "Resource": "pfrn:data--*!*/Profile/Files/*",
    "Principal": {
      "MemberOf": {
        "RoleId": "*"
      }
    },
    "Comment": "Allow members of the group to read and write entity profile files",
    "Condition": null
  },
  {
    "Action": "*",
    "Effect": "Deny",
    "Resource": "pfrn:data--*!*/Profile/Objects/*",
    "Principal": {
      "MemberOf": {
        "RoleId": "members"
      }
    },
    "Comment": "Deny members of the group to read and write entity profile objects",
    "Condition": null
  },

You can do it either via [Your GameManager]->[Groups]->choose your group->[Policy], or using the SetProfilePolicy API.

10 |1200
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.