[
https://issues.apache.org/jira/browse/JCR-3412?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13698896#comment-13698896
]
angela commented on JCR-3412:
-----------------------------
i added a test for this issue in OAK (revision 1499363). If the test is really
correct this issue is no longer present in oak.
> UserManager.findAuthorizables() does not work, if session does not have read
> access to /home
> --------------------------------------------------------------------------------------------
>
> Key: JCR-3412
> URL: https://issues.apache.org/jira/browse/JCR-3412
> Project: Jackrabbit Content Repository
> Issue Type: Bug
> Components: jackrabbit-core, query, security
> Affects Versions: 2.4
> Reporter: Tobias Bocanegra
> Attachments: AutorizablesTest.java.patch, JCR-3412.patch
>
>
> If the session does not have read access to /home, the
> UserManager.findAuthorizables() does not find anything.
> log shows:
> org.apache.jackrabbit.core.query.lucene.DescendantSelfAxisQuery Access denied
> to node id d8cbdd0f-4fe1-473f-b452-219a3eb3d867.
> Where as this query works, and returns the user homes the session has read
> access to:
> /jcr:root//element(*,rep:User)
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
