You are viewing a plain text version of this content. The canonical link for it is here.

Posted to oak-issues@jackrabbit.apache.org by "angela (JIRA)" <ji...@apache.org> on 2019/06/06 13:28:00 UTC

[jira] [Updated] (OAK-8388) AccessControlManagerImpl.getEffectivePolicies(Set): Insufficient validation of query results

     [ https://issues.apache.org/jira/browse/OAK-8388?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

angela updated OAK-8388:
------------------------
    Summary: AccessControlManagerImpl.getEffectivePolicies(Set): Insufficient validation of query results  (was: AccessControlManagerImpl.getEffectivePolicies(Set): Insufficicient validator of query results)

> AccessControlManagerImpl.getEffectivePolicies(Set): Insufficient validation of query results
> --------------------------------------------------------------------------------------------
>
>                 Key: OAK-8388
>                 URL: https://issues.apache.org/jira/browse/OAK-8388
>             Project: Jackrabbit Oak
>          Issue Type: Bug
>          Components: core, security
>            Reporter: angela
>            Assignee: angela
>            Priority: Minor
>
> when searching for effective policies by a given set of principals, the query limits the results to trees of type rep:ACE. upon processing the query result the code asserts that the result set doesn't contain any kind of isolated access control entries that are not located within a ACL... but only checks for the acl-tree name being empty and not whether it matches the names mandated by this implementation.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)