I'm trying to set the security on my CCI projects so that only certain groups can see certain projects. Following the wiki, it says that global permissions are overwritten by the project and configuration level permissions. So I set the Registered Users group to deny on View Project at the global level, then add my groups at the project level and set them to view project, view configuration, and the build permissions I want them to have. But when a user in one of those groups logs in, they see "No configurations found". Also,when I go back into the group's permissions on the project, now the allow checkbox for View Project is grayed out and unclickable.
Deny permissions always override allow permissions, so if you deny View Project permission to all registered users at the global level, then adding allow permissions at project and configuration level has no effect.
Instead of denying permissions, just ensure that the allow View Project permission is not ticked at global level for Registered Users and other groups that your users are members of. All projects and configuation should then be invisible to users, until you add the allow permissions (or ideally a role that provides those permissions) to each group or user at project or configuration level.
Note that View Project allow permission checkbox is automatically ticked and grayed out when the View Configuration allow permission is ticked at project level. View Configuration requires View Project as you cannot view the configurations if you can't view the project.
