You have to have read permissions on every part of the path in slide in order to access something. So in order to access /files/test.doc, you need to be able to read "/", "files" and "test.doc". Missing read permissions on anyone of these segments causes a HTTP not found error.
-----Original Message----- From: J H [mailto:[EMAIL PROTECTED] Sent: Tuesday, November 29, 2005 6:00 PM To: [email protected] Subject: RE: Security Not Enabled?? Hi Everyone, I still don't understand why slide is applying permissions to / such that any authenticated user can log in. How would I disable the "/" permission that is being added at the top of the print screen I have attached? THANKS! Jeff ---- Domain.xml contents... I have even tried removing the "/users" line below, but I can still log in because / is allowing everything. <data> <objectnode classname="org.apache.slide.structure.SubjectNode" uri="/"> <!-- Allow authenticated users read access to the root of the server --> <permission action="/actions/read" subject="/users" inheritable="false"/> <!-- /users --> <objectnode classname="org.apache.slide.structure.SubjectNode" uri="/users"/> <!-- /actions --> <objectnode classname="org.apache.slide.structure.ActionNode" uri="/actions"> <objectnode classname="org.apache.slide.structure.ActionNode" uri="/actions/read"/> <objectnode classname="org.apache.slide.structure.ActionNode" uri="/actions/write"/> <objectnode classname="org.apache.slide.structure.ActionNode" uri="/actions/manage"/> </objectnode> <!-- /My Reports --> <objectnode classname="org.apache.slide.structure.SubjectNode" uri="/My Reports"/> </objectnode> </data> >From: "J H" <[EMAIL PROTECTED]> >Reply-To: "Slide Users Mailing List" <[email protected]> >To: [email protected] >Subject: RE: Security Not Enabled?? >Date: Tue, 29 Nov 2005 08:27:56 -0700 > >Okay, I think I found the problem, but I don't know what's causing it. > >The reason that it appeared that security wasn't enabled was because the >root of the slide system "/" was granted all permissions and inheritable. >I am not working at any point and time with / all of my content is under a >nested collection. Is there a setting in the domain/web.xml that would be >causing this? > >Thanks!! I would appreciate ANY input. > >Jeff > >Here's a print out of the permission being applied to "/" >Slide Memorydescriptorstore.java GrantPermission / permission=/-/-/-true > > >>From: "J H" <[EMAIL PROTECTED]> >>Reply-To: "Slide Users Mailing List" <[email protected]> >>To: [email protected] >>Subject: RE: Security Not Enabled?? >>Date: Mon, 28 Nov 2005 09:30:35 -0700 >> >>One more piece of information, If I set the "directory-browsing-hide-acl" >>setting to false. I see that all of the permissions are correct. Some >>folders have no permissions assigned at all, but I can still view their >>contents! >> >> >>>From: "J H" <[EMAIL PROTECTED]> >>>Reply-To: "Slide Users Mailing List" <[email protected]> >>>To: [email protected] >>>Subject: Security Not Enabled?? >>>Date: Mon, 28 Nov 2005 09:06:41 -0700 >>> >>>Hi Everyone, >>> >>>I've been struggling on a problem for the last couple of weeks, and I >>>can't trace it down... >>> >>>I have extended slide to be able to access my old repository. The >>>problem I am experiencing is that if the user is able to log in to the >>>system they can see EVERYTHING, even if a particular folder hasn't been >>>assigned to their group. The best I can tell slide has no security >>>enforced, but I am getting the following line at the end of this e-mail >>>which says slide.security is true. >>> >>>Has anyone else had this problem? >>> >>>Where are the places that I ENABLE slide security? >>> >>>Thanks in advance!!! >>>Jeff >>> >>>28 Nov 2005 08:35:46 - org.apache.slide.common.Domain - INFO - Domain >>>configuration : {org.apache.slide.lock=false, >>>org.apache.slide.versioncontrol=true, org.apache.slide.debug=true, >>>org.apache.slide.search=true, org.apache.slide.security=true} >>>28 Nov 2005 08:35:46 - org.apache.slide.common.Domain - INFO - Domain >>>parameters: {logger-level=7, versioncontrol-exclude=, >>>auto-version=checkout-checkin, historypath=/history, >>>checkin-fork=forbidden, workingresourcepath=/workingresource, >>>workspacepath=/workspace, default=slide, auto-version-control=false, >>>logger=org.apache.slide.util.logger.SimpleLogger, >>>checkout-fork=forbidden} >>> >>> >>> >>>--------------------------------------------------------------------- >>>To unsubscribe, e-mail: [EMAIL PROTECTED] >>>For additional commands, e-mail: [EMAIL PROTECTED] >>> >> >> >> >>--------------------------------------------------------------------- >>To unsubscribe, e-mail: [EMAIL PROTECTED] >>For additional commands, e-mail: [EMAIL PROTECTED] >> > > > >--------------------------------------------------------------------- >To unsubscribe, e-mail: [EMAIL PROTECTED] >For additional commands, e-mail: [EMAIL PROTECTED] > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
