I'm not sure if I can describe the problem so that everybody can understand it right away, so please don't hesitate asking questions to narrow down my problem. So to start things off I removed all default user groups (owner, member, visitor) and created
new groups e.g. "project lead", "project lead customer" aso. I've created an individuell role for each group and those roles have a custom set of SPBasePermissions to define which kind of actions the user can do.
Finally I'm using the following method to combine the role and the group with every list, documentlibrary and SPWeb inside my sitecollection:
public static void EnsureRoleAssignment(this SPSecurableObject securableObject, SPPrincipal principal, SPRoleDefinition roleDefinition)
var pRoleAssignment = new SPRoleAssignment(principal);
So here is my problem: If I try to access my site collection or any list with a user which has been added to the "project lead" group I get "Access denied". Which rights are the minimum requirement based on this
View Complete Post