I am using MODx revolution and I have watched the video at: http://rtfm.modx.com/display/revolution20/Security
I have a resource that is a container. I am trying to figure out if it is possible to setup a user group that only has permissions to add/edit/delete/unpublish/publish documents within that container rather than generically across all resources and containers.
Thanks!
You should be able to archieve this with resource groups. Just create a resource group, put all resources on root level but your container to it and apply security measures as usual with Groups, Roles and ACLs on that resource group. Child resources of resources in the resource group (also new ones) will be treated as part of the resource group, so they will never show up to users, that don't have rights to view that resource group.
This only works, if your container is on root level because all resources above your container have to be at least visible. It is possible, to do this with several resource groups, too, but in this case I'd advice you to put your container in a context on his own and grant some users access to that context only and not to the standard mgr context.
You can find out how to do this in detail in the RTFM or in this very comprehensive guide by Bob Ray.