Marcel Reutegger created OAK-7602:
-------------------------------------
Summary: Authorization when binary is created
Key: OAK-7602
URL: https://issues.apache.org/jira/browse/OAK-7602
Project: Jackrabbit Oak
Issue Type: Improvement
Components: core, security
Reporter: Marcel Reutegger
As part of OAK-7569 the question was raised, whether creating a binary should
be protected by authorization. A binary can be created by any session and the
repository will only check permissions when it is later used as a value for a
property. It is therefore left to the application to first check if a session
even has write access to the location where the binary will be used as a value.
Otherwise the binary was created unnecessarily.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
