[
https://issues.apache.org/jira/browse/OAK-952?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
angela resolved OAK-952.
------------------------
Resolution: Won't Fix
probably too restrictive and could possibly cause backwards compatibility
issues... that's not worth the trouble.
> AccessControlValidator: fail for ACEs created for any of the admin principals
> -----------------------------------------------------------------------------
>
> Key: OAK-952
> URL: https://issues.apache.org/jira/browse/OAK-952
> Project: Jackrabbit Oak
> Issue Type: Sub-task
> Components: core
> Reporter: angela
> Priority: Minor
>
> we may consider failing any AC modification if the principal associated with
> a given ACE is either the system principal, an admin principal or one of the
> principals listed as admin in the permission configuration.
> while having ACEs for those prinicpals don't have an effect it might be
> confusing that they can be created in the first place and may create a wrong
> sense of security.
--
This message was sent by Atlassian JIRA
(v6.1#6144)
