angela created OAK-8540: --------------------------- Summary: Effective policies should implememt PrincipalAccessControlList Key: OAK-8540 URL: https://issues.apache.org/jira/browse/OAK-8540 Project: Jackrabbit Oak Issue Type: Improvement Components: authorization-principalbased Reporter: angela Assignee: angela
currently the policies returned upon {{AccessControlManager.getEffectivePolicies(String)}} and {{JackrabbitAccessControlManager.getEffectivePolicies(Set<Prinicipal>)}} are instances of {{ImmutableACL}}, which doesn't reflect the fact that the implementation handles {{PrincipalAccessControlList}}. This makes it a bit confising to 'read' in a composite setup in particular when comparing the return value of {{getPolicies}} with {{getEffectivePolicies}}. therefore i would suggest to introduce an extension of {{ImmutableACL}} implementing {{PrincipalAccessControlList}} and using this for the return value of both methods covering effective policies. [~stillalex], fyi -- This message was sent by Atlassian JIRA (v7.6.14#76016)