Major For any workspace, if the permissions are removed via the interface or via the business logic, that workspace become inaccessible even by the Administrator.
To reproduce it, just create a workspace, then check the "Block permissions inheritance", then remove all local rights. The result is an exception (irelevant by it's content):
org.nuxeo.ecm.core.api.ClientException
org.nuxeo.ecm.core.api.WrappedException: Exception: org.nuxeo.ecm.core.api.ClientException. message: Could not find Stateful bean: 3j001-wl0kfn-f88ouxlk-1-f88pfjrx-as
What is more relevant is that the AbstractSession.checkPermission(Document, String) method will throw an exception if there's no permission found for the document... Also, the Session is broken and you should reauthenticate to be able to work.
The bottom line is that it's quite bad to give the possibility to have a workspace inaccessible by any means other than via business logic...
- is duplicated by
-
NXP-1864 When removing the last user with ManageEverything rights the application crashes
-
- Resolved
-
