JSPWiki
  1. JSPWiki
  2. JSPWIKI-510

SearchManager.JSONSearch.findPages() does not honor ACLs

    Details

    • Type: Bug Bug
    • Status: Resolved
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 2.8.1
    • Fix Version/s: 3.0
    • Component/s: None
    • Labels:
      None

      Description

      Code in JSONSearch.findPages() does not check whether user is allowed to view a page, but lists all of the page names.

        Issue Links

          Activity

          Janne Jalkanen created issue -
          Janne Jalkanen made changes -
          Field Original Value New Value
          Fix Version/s 2.8.3 [ 12313766 ]
          Fix Version/s 2.8.2 [ 12313496 ]
          Harry Metske made changes -
          Fix Version/s 2.8.3 [ 12313766 ]
          Andrew Jaquith made changes -
          Link This issue blocks JSPWIKI-461 [ JSPWIKI-461 ]
          Andrew Jaquith made changes -
          Status Open [ 1 ] Resolved [ 5 ]
          Assignee Andrew Jaquith [ ajaquith ]
          Resolution Fixed [ 1 ]

            People

            • Assignee:
              Andrew Jaquith
              Reporter:
              Janne Jalkanen
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development