You are viewing a plain text version of this content. The canonical link for it is here.
Posted to oak-issues@jackrabbit.apache.org by "angela (JIRA)" <ji...@apache.org> on 2017/08/18 12:34:00 UTC

[jira] [Commented] (OAK-6563) Session.hasCapability(...) should reflect read-only status of mounts

    [ https://issues.apache.org/jira/browse/OAK-6563?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16132119#comment-16132119 ] 

angela commented on OAK-6563:
-----------------------------

[~rombert], the current impl of {{Session.hasCapability}} is terrible (blaming me myself :-)) and just doing some minimal checks... the one for checkedin/locked nodes is even wrong as only write operations are affected... i discussed the topic with [~chkeller], which asked me how the check for the mounts in Adobe AEM application code. feel free to discuss with him what would be needed/sensible from an API consumer point of view.

> Session.hasCapability(...) should reflect read-only status of mounts
> --------------------------------------------------------------------
>
>                 Key: OAK-6563
>                 URL: https://issues.apache.org/jira/browse/OAK-6563
>             Project: Jackrabbit Oak
>          Issue Type: Improvement
>          Components: composite, security
>            Reporter: Robert Munteanu
>            Assignee: Robert Munteanu
>             Fix For: 1.8, 1.7.6
>
>
> When a mount is set in read-only mode callers that check {{Session.hasCapability("addNode", ...)}} or {{Session.hasPermission("setProperty", ...)}} for mounted paths will believe that they are able to write under those paths. For a composite setup with a read-only mount this should (IMO) reflect that callers are not able to write, taking into account the mount information on top of the ACEs.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)