Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-6020

Make it possible for security policies query transformers to check the repository name

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 5.3.2
    • Fix Version/s: 5.4.2-RC1, 5.4.2
    • Component/s: None
    • Impact type:
      API change
    • Upgrade notes:
      Hide

      SecurityPolicy#isExpressibleInQuery and SecurityPolicy#getQueryTransformer now take the additional String repositoryName parameter.
      Policies extending AbstractSecurityPolicy are compatible.

      Show
      SecurityPolicy#isExpressibleInQuery and SecurityPolicy#getQueryTransformer now take the additional String repositoryName parameter. Policies extending AbstractSecurityPolicy are compatible.

      Description

      When using multiple repositories and using custom security policies, some policies should apply only to a given repository.
      It is possible to get the repository name from the document when checking fro a permission on a document, but it's not possible to do so when providing query transformers.

      => the core session should give the repository name to the security service, that will give it to its policies.

        Attachments

          Activity

            People

            • Assignee:
              atchertchian Anahide Tchertchian
              Reporter:
              atchertchian Anahide Tchertchian
              Participants:
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: