-
Type:
Bug
-
Status: Resolved
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 2.4.0, 3.0.0
-
Component/s: Document Permissions, UI
-
Release Notes Summary:The nuxeo-document-acl-table element can remove permissions in custom ACLs.
-
Tags:
-
Backlog priority:700
Steps to reproduce:
1. Create a new ACE under a custom acl named "CustomList" using the Document.AddPermission operation as follows:
curl -X POST http://localhost:8080/nuxeo/site/automation/Document.AddPermission -H "Content-Type: application/json" -u Administrator:Administrator -d '{ "input": "doc:/default-domain/somepath", "params": { "acl": "CustomList", "permission": "Read", "users": ["members"], "comment": "this is a comment", "blockInheritance": "false", "notify": "false" }, "context": {} }'
2. View the permission in the document's "Permissions" tab (screenshot attached), and confirm it is present in the "CustomList" ACL by checking the document's JSON export.
3. Attempt to delete this permission using the Trash icon on the right. Confirm deletion when prompted following.
4. A toast with the text "Permission deleted" displays; however the permission is not deleted and remains in the table and JSON export. (no JS or server errors)
Note: the corresponding network call made to execute Document.RemovePermission only supplies the "id" parameter of the permission, and lacks an "acl" parameter. The following curl command will successfully remove the created permission:
curl -X POST -u Administrator:Administrator 'http://localhost:8080/nuxeo/api/v1/automation/Document.RemovePermission' \ -H 'Content-Type: application/json' \ --data-raw '{ "input": "doc:/default-domain/somepath", "params":{"acl":"CustomList", "id":"members:Read:true:Administrator::"}}'
