givePrivileges(path, testGroup.getPrincipal(), readPrivs, getPrincipalBasedRestrictions(path), false);
/*
expected result:
- nodebased wins over principalbased -> READ is denied
*/
assertFalse(testSession.itemExists(path));
assertFalse(testSession.hasPermission(path, javax.jcr.Session.ACTION_READ));
assertFalse(testAcMgr.hasPrivileges(path, readPrivs));
// remove the nodebased policy
JackrabbitAccessControlList policy = getPolicy(acMgr, path, getTestUser().getPrincipal());