Uploaded image for project: 'Jackrabbit FileVault'
  1. Jackrabbit FileVault
  2. JCRVLT-292

Order of ACLs are altered on installation of content packages

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 3.2
    • Packaging
    • None

    Description

      When installing a content package with AccessControlHandling overwrite access control entries contained in a given list are grouped by principal and ultimately imported with a different order that originally defined in the package.

      This alters the effective permissions for those {{Subject}}s that contain the principals for which the ACEs got imported.

      Example:
      1. grant group1 read at /testroot
      2. deny group2 read at specific subset of items within the tree defined by /testroot
      3. grant group1 read/write at specific subset of items within the tree defined by /testroot

      The ACL resulting from the package import will contain the entries in the following order: 1, 3, 2.

      Attachments

        1. JCRVLT-292.patch
          18 kB
          Angela Schreiber
        2. JCRVLT-292-2.patch
          20 kB
          Angela Schreiber

        Issue Links

          is blocked by

          Sub-task - The sub-task of the issue JCRVLT-296 Test coverage for access control import

          • Major - Major loss of function.
          • Closed
          is related to

          Bug - A problem which impairs or prevents the functions of the product. JCRVLT-293 Failing tests when building vault-core with -Doak=true

          • Major - Major loss of function.
          • Closed

          Activity

            People

              Unassigned Unassigned
              angela Angela Schreiber
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: