Negated user or group conditions aren't matched for unauthenticated users on ProxySG