Hi Abe-san,
It depends. If acls from the whole hierarchy are obtained when you get
the parent acls, then the way repositorydocument does it now makes no
sense. But if only one parent's acls are fetched, then
repositorydocument's current structure is right.
I am out of town this weekend but we can talk in more detail Monday
morning Japan time.
Thanks,
Karl
Sent from my Windows Phone
From: Shinichiro Abe (JIRA)
Sent: 2/7/2014 3:56 PM
To: dev@manifoldcf.apache.org
Subject: [jira] [Commented] (CONNECTORS-886) Add support for Parent
folder security
[
https://issues.apache.org/jira/browse/CONNECTORS-886?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13895023#comment-13895023
]
Shinichiro Abe commented on CONNECTORS-886:
-------------------------------------------
Thanks for your suggestion. Okay. DirectoryACLs methods may be useful.
Though I have known these, I thought these are specific methods for
gts connecter... I'll try to write patch again.
Do I need to think the possibility of new filtering field except for
'share/directory/document' in the future?
Special user token field etc.
I worry about hard-coded [allow|deny] x "3" fields. If a user wants to
use 2 field, I will not create BooleanQuery of 3 fields and I will
create BooleanQuery of 2 fields. Is this okay?
> Add support for Parent folder security
> --------------------------------------
>
> Key: CONNECTORS-886
> URL: https://issues.apache.org/jira/browse/CONNECTORS-886
> Project: ManifoldCF
> Issue Type: Improvement
> Components: JCIFS connector, Solr-4.x-component
> Reporter: Shinichiro Abe
> Fix For: ManifoldCF 1.6
>
> Attachments: CONNECTORS-886-forSolrPlugin.patch, CONNECTORS-886.patch
>
>
> Windows server checks the access permission of a share folder and the
> security permission of a file document when we access a file via network.
> As far as I look into that, Windows does not take subfolder's security
> permissions into account.
> There is a case that someone who is admin wants to configure 'Everyone' for
> 'share folders' and configure each access permissions for 'sub folders'.
> E.g. \\ShareFolder\Admin --> Admin folder for administrative user,
> \\ShareFolder\Sales --> Sales folder for sales user.
> The users put files in 'sub folders', then the permission of these files will
> be inherited from the permission of 'sub folders'.
> I'd like to support access permissions for 'sub folders' in jcifs/solr
> connector.
> In general, we expect file's permission to be inherited from parent folder.
> So I want to manage parent's security by providing new [allow|deny]_token
> fields.
--
This message was sent by Atlassian JIRA
(v6.1.5#6160)
