You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@jackrabbit.apache.org by "Omid Milani (JIRA)" <ji...@apache.org> on 2011/03/09 07:19:59 UTC
[jira] Updated: (JCR-2911) Fine-grained access control for managing
node types
[ https://issues.apache.org/jira/browse/JCR-2911?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Omid Milani updated JCR-2911:
-----------------------------
Status: Patch Available (was: Open)
Added a accessManagerForNodeTypes interface. When repository accessManager implements that interface too, nodeTypeManagerImpl will ask it for permission for register/unregister of node types.
Also noticed that nodeTypeManagerImpl.getNodeTypeRegistry is public, which seems wrong. Made it protected, and changed it's uses to sessionContext.getNodeTypeRegistry (which was available everywhere but in one unit test)
I've tested this only as part of my system and haven't added unit tests here.
> Fine-grained access control for managing node types
> ---------------------------------------------------
>
> Key: JCR-2911
> URL: https://issues.apache.org/jira/browse/JCR-2911
> Project: Jackrabbit Content Repository
> Issue Type: New Feature
> Components: jackrabbit-core, nodetype
> Affects Versions: 2.2.4, 2.3.0
> Reporter: Omid Milani
> Priority: Minor
> Labels: accessManager, nodetype, security
> Fix For: 2.3.0
>
> Original Estimate: 5m
> Remaining Estimate: 5m
>
> Extend AccessManager interface to include authorization for register/unregister of node types so it can be defined that a certain user can define and modify some node types but not the others.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira