Hi,
I want to use an amp to get to the role names for the role id's on the
document permissions. So I add my user's role to the get-role-names
amp.
How come I still get a privilege exception for this user?
My understanding of amps is that once a role has the amp token for a
function, that role has root powers that include any privilege inside
the function body.
SEC-PRIV:
xdmp:security-assert("http://marklogic.com/xdmp/privileges/get-role-names";,
"execute") -- Need privilege:
http://marklogic.com/xdmp/privileges/get-role-names
in /MarkLogic/security.xqy, on line 707
expr:
xdmp:security-assert("http://marklogic.com/xdmp/privileges/get-role-names";,
"execute"),
in sec:get-role-names(xs:unsignedLong("5500450759246938400"))
in /content/save_check_role-names.xqy, on line 9
regards,
Jeroen
--
Jeroen Pulles
Xopus B.V., The Netherlands
Xopus: The web based WYSIWYG XML Editor
_______________________________________________
General mailing list
[email protected]
http://xqzone.com/mailman/listinfo/general
