angela created OAK-8540:
---------------------------
Summary: Effective policies should implememt
PrincipalAccessControlList
Key: OAK-8540
URL: https://issues.apache.org/jira/browse/OAK-8540
Project: Jackrabbit Oak
Issue Type: Improvement
Components: authorization-principalbased
Reporter: angela
Assignee: angela
currently the policies returned upon
{{AccessControlManager.getEffectivePolicies(String)}} and
{{JackrabbitAccessControlManager.getEffectivePolicies(Set<Prinicipal>)}} are
instances of {{ImmutableACL}}, which doesn't reflect the fact that the
implementation handles {{PrincipalAccessControlList}}. This makes it a bit
confising to 'read' in a composite setup in particular when comparing the
return value of {{getPolicies}} with {{getEffectivePolicies}}.
therefore i would suggest to introduce an extension of {{ImmutableACL}}
implementing {{PrincipalAccessControlList}} and using this for the return value
of both methods covering effective policies.
[~stillalex], fyi
--
This message was sent by Atlassian JIRA
(v7.6.14#76016)
