Uploaded image for project: 'Jackrabbit Oak'
  1. Jackrabbit Oak
  2. OAK-6527

CompositeNodeStore permission evaluation fails for open setups

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 1.7.3, 1.7.4, 1.7.5
    • 1.7.6, 1.8.0
    • composite, security
    • None

    Description

      It seems the current setup of OR-ing the composite nodestore permission setups breaks down when the root node has an allow all reads. This seems a fundamental flaw in the way it works now, so I'm considering going back to the drawing board and working on the solution proposed by chetanm as a part of OAK-3777, effectively making OAK-6356 and OAK-6469 obsolete.

      Attachments

        Issue Links

          supercedes

          Bug - A problem which impairs or prevents the functions of the product. OAK-6499 MultiplexingPermissionProvider wrong privileges composition

          • Major - Major loss of function.
          • Closed

          Technical task - A technical task. OAK-3777 Multiplexing support in default PermissionStore implementation

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. OAK-6356 Allow CompositePermissionProvider to OR entries

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. OAK-6469 CompositePermissionProvider should implement AggregatedPermissionProvider

          • Major - Major loss of function.
          • Closed

          Activity

            People

              stillalex Alex Deparvu
              stillalex Alex Deparvu
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: