One permission from each category can be applied to a folder for a group.
Permissions are set on workspace folders, not on the workspace items within the folders. A permission and the group to which the permission applies is called an access control element (ACE). The set of ACEs applied to a single folder constitutes the access control list (ACL) for the folder.
The following folder access permissions are defined:
Users can see the folder itself, but can see only the contents of subfolders for which they have an explicit permission of at least Read-Only.
Users can read, write, and execute the entire contents of the folder. Users can also create workspace items, including subfolders, and rename, modify, and delete workspace items.
Users can see the folder name, subject to a Read-Limited permission, but not its contents. If the parent folder grants Read-Write permission to a group to which the user belongs, the user can modify the folder name.
Permission precedence is used to evaluate a user's or group's effective permission to access a folder and its contents. Many users belong to multiple ClearQuest® groups and subgroups, and a subgroup can inherit permissions from many groups. If membership in these groups and the rules of group permission inheritance result in the user or group being granted multiple permissions for a particular folder and its contents, the effective permission is determined by permission precedence.
Only a user with the Security Administrator or Public Folder Administrator privilege can set the Change-Permission permission on a folder. The following permission is defined to change a folder permission: