I have some LDAP groups that have been giving permissions to an asset builder. They then create postings on our website. I would also like to allow these users to manage their postings by editing them and deleting them. So, when they create the asset a trigger fires that gives them admin access to just that created asset. I had assumed that from there, my trigger to allow them to delete their asset would work, but my logs keep saying permission denied.
Here is what the logs show when the LDAP user tries to delete the asset that they have admin permissions on:
Raw Entry: [2009-03-12 09:13:14][19909:CN=Nic Hubbard [nnhubbard],OU=Staff,DC=puc,DC=edu:Nic Hubbard [nnhubbard]][512:mysource warning][R] (/core/include/locale_manager.inc:504) - Could not delete notice link #82408 - no effective write access to major asset ("Future Status for "Mini Fridge" [#47606]" #47608) [SYS0319] Raw Entry: [2009-03-12 09:13:14][19909:CN=Nic Hubbard [nnhubbard],OU=Staff,DC=puc,DC=edu:Nic Hubbard [nnhubbard]][512:mysource warning][R] (/core/include/locale_manager.inc:504) - Deletion of link #82404 was blocked by the major asset ("Wanted" #47077): Permission Denied [SYS0302]
Why would the parent folder, which is the major asset, block the deleting of the child file that the LDAP user created? I even tried giving the LDAP users permissions to the parent folder, and that still did not work.
It is not my delete trigger that is failing, it is the blocking by the major asset that is preventing the deletion. In fact, the trigger DOES create a link to the trash for their asset, but the link to its current location is never deleted due to permissions. (The delete trigger has remove from all parents checked)
Ideas?