All,
Locally, we've just stumbled across what seems to be an "open ended"
context.setIgnoreAuthorization(true) call in
org.dspace.browse.IndexBrowse in the 'IndexBrowse(context)' method (near
line 146, at least in 1.5.x branch):
/**
* Create a new IndexBrowse object. This will ignore any authorisations
* applied to the Context
*
* @param context
* @throws SQLException
* @throws BrowseException
*/
public IndexBrowse(Context context)
throws SQLException, BrowseException
{
this.context = context;
this.context.setIgnoreAuthorization(true);
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
There does NOT seem to be a corresponding setIgnoreAuthorization(false)
call.
Locally, we've tried adding such a call at the end of this method, and
it seems to be fine. That being said, I'm not an expert on the new
ConfigurableBrowse system. Can someone else take a closer look at
this? (Graham maybe?)
- Tim
--
Tim Donohue
Research Programmer, IDEALS
http://www.ideals.uiuc.edu/
University of Illinois
[email protected] | (217) 333-4648
------------------------------------------------------------------------------
This SF.net email is sponsored by:
SourcForge Community
SourceForge wants to tell your story.
http://p.sf.net/sfu/sf-spreadtheword
_______________________________________________
Dspace-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/dspace-devel
