Steps to reproduce

1. On the admin siteaccess, on "Users", create user group "TestGroup";
2. Inside "TestGroup", create user:

Username: jsmith
Password: jsmith

3. On "Roles", create role "TestRole", and enter it by clicking its link;
4. Add the following policies:

Module		Function	Limitation
======		========	==========
content		read		Node( Home , Media ) , Subtree( Tests )
user		login		No limitations

Note: "Subtree( Tests )" refers to a test folder located directly under Home.

5. Assign the role "TestRole" to "TestGroup" user goup;
6. Login to the admin siteaccess as the new user created on step 2.

Results:
a) Home: the page could not be displayed, and a "User does not have access to 'read' 'content' with: contentId '57'" 500 error was displayed instead.

• Note: contentId 57 refers to my test installation's main node

b) Subtree: got the same error, for the subtree's contentId, 120: "User does not have access to 'read' 'content' with: contentId '120'"

Error:

CRITICAL - Uncaught PHP Exception eZ\Publish\Core\Base\Exceptions\UnauthorizedException: "User does not have access to 'read' 'content' with: contentId '57'" at /var/www/54ezdemo.com/vendor/ezsystems/ezpublish-kernel/eZ/Publish/Core/Repository/ContentService.php line 128