[
https://issues.apache.org/jira/browse/JCR-3412?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Alex Parvulescu updated JCR-3412:
---------------------------------
Attachment: AutorizablesTest.java.patch
Attaching a new test that extends AbstractEvaluationTest.
I see the same problem as before.
I'm tinking that this comes from the "security" workspace acl setup.
We need to reconsider this issue in the context of jackrabbit and see what
exactly "/home" refers to.
Is it the acls config home ("/rep:security/rep:authorizables") on the
"security" workspace or is it another node in the default ws.
> UserManager.findAuthorizables() does not work, if session does not have read
> access to /home
> --------------------------------------------------------------------------------------------
>
> Key: JCR-3412
> URL: https://issues.apache.org/jira/browse/JCR-3412
> Project: Jackrabbit Content Repository
> Issue Type: Bug
> Components: jackrabbit-core, query, security
> Affects Versions: 2.4
> Reporter: Tobias Bocanegra
> Attachments: AutorizablesTest.java.patch, JCR-3412.patch
>
>
> If the session does not have read access to /home, the
> UserManager.findAuthorizables() does not find anything.
> log shows:
> org.apache.jackrabbit.core.query.lucene.DescendantSelfAxisQuery Access denied
> to node id d8cbdd0f-4fe1-473f-b452-219a3eb3d867.
> Where as this query works, and returns the user homes the session has read
> access to:
> /jcr:root//element(*,rep:User)
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
