You are viewing a plain text version of this content. The canonical link for it is here.

Posted to oak-issues@jackrabbit.apache.org by "Tomek Rękawek (JIRA)" <ji...@apache.org> on 2018/11/29 20:26:00 UTC

[jira] [Created] (OAK-7926) ACLs for the mounted principal should use the mounted permission store

Tomek Rękawek created OAK-7926:
----------------------------------

             Summary: ACLs for the mounted principal should use the mounted permission store
                 Key: OAK-7926
                 URL: https://issues.apache.org/jira/browse/OAK-7926
             Project: Jackrabbit Oak
          Issue Type: Bug
          Components: security
            Reporter: Tomek Rękawek
             Fix For: 1.10


Right now, the permission store is aware of the mounts configured with the {{MountInfoProvider}}: adding a ACL for the content stored in a mount will result in creating the {{rep:Permissions}} in {{/jcr:system/rep:permissionStore/oak:mount-MOUNT-WORKSPACE}} permission store. This path should be mounted as well. This way the content and its permissions can be mounted together. See OAK-3777 for more details on this.

As in OAK-7725, it's also possible to include a {{rep:AuthorizableFolder}} in a mount. This way, the users created in such folder will be stored in the mounted repository (when using Composite Node Store). Permissions for such users should be also stored in the mounted permission store, rather than general one.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)