You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@sling.apache.org by "Bertrand Delacretaz (JIRA)" <ji...@apache.org> on 2016/01/06 16:14:40 UTC
[jira] [Comment Edited] (SLING-5135) Whitelist legit usages of
loginAdministrative and administrative ResourceResolver
[ https://issues.apache.org/jira/browse/SLING-5135?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15085551#comment-15085551 ]
Bertrand Delacretaz edited comment on SLING-5135 at 1/6/16 3:14 PM:
--------------------------------------------------------------------
The emerging idea from the dev list thread is to use a whitelist of bundle symbolic names, to indicate which bundles are still allowed to use loginAdmin once that's disabled.
Once that's clarified, we might remove or at least clarify the deprecation notice on the SlingRepository.loginAdministrative method, and corresponding ResourceResolver methods.
was (Author: bdelacretaz):
The emerging idea from the dev list thread is to use a whitelist of bundle symbolic names, to indicate which bundles are still allowed to use loginAdmin once that's disabled.
> Whitelist legit usages of loginAdministrative and administrative ResourceResolver
> ---------------------------------------------------------------------------------
>
> Key: SLING-5135
> URL: https://issues.apache.org/jira/browse/SLING-5135
> Project: Sling
> Issue Type: Bug
> Components: JCR
> Reporter: Antonio Sanso
> Assignee: Bertrand Delacretaz
>
> {{AbstractSlingRepositoryManager}} contains a method that disable loginAdministrative support
> {code}
> /**
> * Returns whether to disable the
> * {@code SlingRepository.loginAdministrative} method or not.
> *
> * @return {@code true} if {@code SlingRepository.loginAdministrative} is
> * disabled.
> */
> public final boolean isDisableLoginAdministrative()
> {code}
> This is a global configuration. It would be nice to have an extension of such mechanism that contains a white list of (few) legit usage of {{loginAdministrative}}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)