Uploaded image for project: 'Sling'
  1. Sling
  2. SLING-10906

Implement ResourceAccessSecurity.can...Value()

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Open
    • Major
    • Resolution: Unresolved
    • Resource Access Security 1.0.0
    • None
    • Resource Access Security
    • None

    Description

      Currently all methods:

      1. canReadValue
      2. canSetValue and
      3. canDeleteValue

      always return false in ResourceAccessSecurityImpl. Although those methods are not used from the resource resolver or any resource provider they should be implemented based on information from the ResourceAccessGate.

      At the same time the canCreate...Value(s) methods in the ResourceAccessGate need to be deprecated as there is no dedicated create method for a property in Sling Resource API (both creation and update use the same mechanism).
      The canReadValue must also be evaluated before inside ResourceAccessSecurityImpl.getReadableResource() to only expose a subset of properties.

      Attachments

        Activity

          People

            Unassigned Unassigned
            kwin Konrad Windszus
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated: