Hi Everyone, I still don't understand why slide is applying permissions to /
such that any authenticated user can log in. How would I disable the "/"
permission that is being added at the top of the print screen I have
attached?
THANKS!
Jeff
----
Domain.xml contents...
I have even tried removing the "/users" line below, but I can still log in
because / is allowing everything.
<data>
<objectnode classname="org.apache.slide.structure.SubjectNode" uri="/">
<!-- Allow authenticated users read access to the root of the server -->
<permission action="/actions/read" subject="/users" inheritable="false"/>
<!-- /users -->
<objectnode classname="org.apache.slide.structure.SubjectNode"
uri="/users"/>
<!-- /actions -->
<objectnode classname="org.apache.slide.structure.ActionNode"
uri="/actions">
<objectnode classname="org.apache.slide.structure.ActionNode"
uri="/actions/read"/>
<objectnode classname="org.apache.slide.structure.ActionNode"
uri="/actions/write"/>
<objectnode classname="org.apache.slide.structure.ActionNode"
uri="/actions/manage"/>
</objectnode>
<!-- /My Reports -->
<objectnode classname="org.apache.slide.structure.SubjectNode" uri="/My
Reports"/>
</objectnode>
</data>
From: "J H" <[EMAIL PROTECTED]>
Reply-To: "Slide Users Mailing List" <[email protected]>
To: [email protected]
Subject: RE: Security Not Enabled??
Date: Tue, 29 Nov 2005 08:27:56 -0700
Okay, I think I found the problem, but I don't know what's causing it.
The reason that it appeared that security wasn't enabled was because the
root of the slide system "/" was granted all permissions and inheritable.
I am not working at any point and time with / all of my content is under a
nested collection. Is there a setting in the domain/web.xml that would be
causing this?
Thanks!! I would appreciate ANY input.
Jeff
Here's a print out of the permission being applied to "/"
Slide Memorydescriptorstore.java GrantPermission / permission=/-/-/-true
From: "J H" <[EMAIL PROTECTED]>
Reply-To: "Slide Users Mailing List" <[email protected]>
To: [email protected]
Subject: RE: Security Not Enabled??
Date: Mon, 28 Nov 2005 09:30:35 -0700
One more piece of information, If I set the "directory-browsing-hide-acl"
setting to false. I see that all of the permissions are correct. Some
folders have no permissions assigned at all, but I can still view their
contents!
From: "J H" <[EMAIL PROTECTED]>
Reply-To: "Slide Users Mailing List" <[email protected]>
To: [email protected]
Subject: Security Not Enabled??
Date: Mon, 28 Nov 2005 09:06:41 -0700
Hi Everyone,
I've been struggling on a problem for the last couple of weeks, and I
can't trace it down...
I have extended slide to be able to access my old repository. The
problem I am experiencing is that if the user is able to log in to the
system they can see EVERYTHING, even if a particular folder hasn't been
assigned to their group. The best I can tell slide has no security
enforced, but I am getting the following line at the end of this e-mail
which says slide.security is true.
Has anyone else had this problem?
Where are the places that I ENABLE slide security?
Thanks in advance!!!
Jeff
28 Nov 2005 08:35:46 - org.apache.slide.common.Domain - INFO - Domain
configuration : {org.apache.slide.lock=false,
org.apache.slide.versioncontrol=true, org.apache.slide.debug=true,
org.apache.slide.search=true, org.apache.slide.security=true}
28 Nov 2005 08:35:46 - org.apache.slide.common.Domain - INFO - Domain
parameters: {logger-level=7, versioncontrol-exclude=,
auto-version=checkout-checkin, historypath=/history,
checkin-fork=forbidden, workingresourcepath=/workingresource,
workspacepath=/workspace, default=slide, auto-version-control=false,
logger=org.apache.slide.util.logger.SimpleLogger,
checkout-fork=forbidden}
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
