Hi, How are access control policies supposed to behave in case the referenced principal or node path is deleted? Are they automatically cleaned up?
They are automatically deleted whenever the parent node is being deleted (while for resource based ACLs this is expected and makes sense for principal ACLs this may sometimes lead to surprises). I would like to add a paragraph to both https://jackrabbit.apache.org/oak/docs/security/authorization/principalbased.html and https://jackrabbit.apache.org/oak/docs/security/accesscontrol/default.html to document this, so I would appreciate some pointers. Thanks in advance, Konrad
