Details

    • Type: Sub-task
    • Status: Open
    • Priority: Minor
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: QualifiedToSchedule
    • Component/s: Core

      Description

      Context

      BulkLifeCycleChangeListener is used to apply lifecycle changes on a sub tree.

      As a result : it is used when putting a Document to trash or restoring it.

      As reported in SUPNXP-9785, with the current system, you can end up putting in trash a subtree containing folders that you don't have access to.

      This can be seen as a problem.

      Approach

      To solve this we can not do a full tree pre-check : this would be too slow.

      However, an option could be to do the LifeCycle transition from bottom to up and checking security "on behalf" of users for each node.

        Attachments

          Activity

          Hide
          aescaffre Alain Escaffre added a comment -

          If want to perform the check for complete deletion use case, this logic will have to be implemented at SQL level

          Show
          aescaffre Alain Escaffre added a comment - If want to perform the check for complete deletion use case, this logic will have to be implemented at SQL level
          Hide
          fguillaume Florent Guillaume added a comment -

          We want to avoid pushing things at the SQL level, given that in a few months we'll have a non-SQL backend...

          Show
          fguillaume Florent Guillaume added a comment - We want to avoid pushing things at the SQL level, given that in a few months we'll have a non-SQL backend...
          Hide
          aescaffre Alain Escaffre added a comment -

          Also he functional expected behaviour should be: refuse to delete a folder if there is one children below on which user don't have delete permission (was not clearly expressed in the ticket description)

          Show
          aescaffre Alain Escaffre added a comment - Also he functional expected behaviour should be: refuse to delete a folder if there is one children below on which user don't have delete permission (was not clearly expressed in the ticket description)
          Hide
          fguillaume Florent Guillaume added a comment -

          But this has to be bypassed for admins, and maybe if a system property is set for backward compat.

          Show
          fguillaume Florent Guillaume added a comment - But this has to be bypassed for admins, and maybe if a system property is set for backward compat.

            People

            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated: