You are viewing limited content. For full access, please sign in.

Question

Question

Error - 9119 - How to find entries that you don't have access to?

Security Laserfiche
Updated April 15, 2015
asked on April 14, 2015

Hi All,

 

Trying to remove some templates from the repository but I get the error for a specific template :-

Searching for the template doesn't show any results logged in as admin as I've already deleted all the documents and emptied the global recycle bin. I know that there are some documents/folders in the repository that have explicitly denied the admin account browse or read access so of course these won't appear in the search or let me delete them. Bypass browse is enabled but I'm guessing with a explicit deny that's not going to work. angry

 

How can I find out which documents that are using the template in question? I'm guessing I'm going to have to look directly in SQL somewhere to find this? Folder path I'm guessing I would need as Entry ID isn't going to help me here? I can then use the admin account to grant access to these documents and delete.

Head wrecking! indecision

Cheers!

0 0

Answer

SELECTED ANSWER
replied on April 15, 2015

This should give you an idea of how many documents you're dealing with:

select count(*)
 from toc
where pset_id in
(select pset_id from propset
where pset_name = 'TEMPLATE NAME GOES HERE'
)

Then you can look in the TOC table for the documents:

select top 10 tocid, name, parentid from toc
where pset_id in
(select pset_id from propset
where pset_name = 'TEMPLATE NAME GOES HERE'
)

You can chase the parent name up the tree based on the ID in the TOC table as well.

1 0

Replies

replied on April 14, 2015

Hi Chris, 

There really isn't a 'legit' way to find documents you don't have access to. 'Manage Entry Access' gives you the ability to access all documents for the purposes of setting security on by effectively granting you 'browse' and 'read/write security' on all docs (plus 'read' on all folders) - basically what you need to navigate to any document and update security (I'd use that instead of Bypass Browse for working on this, btw, which will NOT do the folder side since that's not the point of it). However, you generally need 'read' on an entry to return search results - Manage Entry Access lets you get to it, but not run searches on it. That's really going to be your issue, not explicit deny's. Also documents with security tags you don't have access to will also not be accessible with the Manage Entry Access privilege. 

So, yes, I think you'd need to use SQL for this. 

2 0
replied on April 15, 2015

Thanks for the reply Justin,

 

Could you please point me in the right direction within SQL on how to achieve this? Or being that this is slightly sensitive would it be better to do this through a support case or email?

 

Cheers! yes

0 0
SELECTED ANSWER
replied on April 15, 2015

This should give you an idea of how many documents you're dealing with:

select count(*)
 from toc
where pset_id in
(select pset_id from propset
where pset_name = 'TEMPLATE NAME GOES HERE'
)

Then you can look in the TOC table for the documents:

select top 10 tocid, name, parentid from toc
where pset_id in
(select pset_id from propset
where pset_name = 'TEMPLATE NAME GOES HERE'
)

You can chase the parent name up the tree based on the ID in the TOC table as well.

1 0
replied on April 15, 2015

Thanks Miruna!

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...