The order in which the access control rules are listed is significant, because the server follows the first rule that grants or denies access, and ignores all subsequent conflicts.
Always put the most specific rules first, and the more general rules
later. For example, suppose the first rule for the calendar jane.ashe:sports grants read access to all users. Then, the
Server encounters a second rule that denies angela.liu read access to this calendar. In this case, the
Server grants angela.liu read access to this
calendar and ignores the second rule because of the conflict.
To ensure that an access right for a specific user such as angela.liu is honored, place the rule for angela.liu before more global entries such as a rule that applies to all users of a calendar.