[
https://issues.apache.org/jira/browse/OAK-8540?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
angela updated OAK-8540:
------------------------
Fix Version/s: 1.18.0
> Effective policies should implememt PrincipalAccessControlList
> --------------------------------------------------------------
>
> Key: OAK-8540
> URL: https://issues.apache.org/jira/browse/OAK-8540
> Project: Jackrabbit Oak
> Issue Type: Improvement
> Components: authorization-principalbased
> Reporter: angela
> Assignee: angela
> Priority: Major
> Fix For: 1.18.0
>
>
> currently the policies returned upon
> {{AccessControlManager.getEffectivePolicies(String)}} and
> {{JackrabbitAccessControlManager.getEffectivePolicies(Set<Prinicipal>)}} are
> instances of {{ImmutableACL}}, which doesn't reflect the fact that the
> implementation handles {{PrincipalAccessControlList}}. This makes it a bit
> confising to 'read' in a composite setup in particular when comparing the
> return value of {{getPolicies}} with {{getEffectivePolicies}}.
> therefore i would suggest to introduce an extension of {{ImmutableACL}}
> implementing {{PrincipalAccessControlList}} and using this for the return
> value of both methods covering effective policies.
> [~stillalex], fyi
--
This message was sent by Atlassian JIRA
(v7.6.14#76016)
