Uploaded image for project: 'Magnolia'
  1. Magnolia
  2. MAGNOLIA-4589

Improve security API to allow testing arbitrary user's permissions

    XMLWordPrintable

Details

    • Improvement
    • Resolution: Won't Do
    • Major
    • None
    • 4.5.3
    • security
    • None

    Description

      The security API should allow you to test an arbitrary user's permissons against a specific Magnolia resource. As it is now only the logged in user as found in the context is accessible for permission testing.

      Example of pseudo usage:

      workspace = "someworkspace"
      path = "/path/to/a/node"
      node = NodeUtil.getNode(workspace, path)
      
      userName = "myuser"
      userObj = Security.getUser(userName)
      
      hasPermission = Security.isGranted(userObj, node, Permission.READ)
      

      Checklists

        Acceptance criteria

        Attachments

          Activity

            People

              Unassigned Unassigned
              thbr03 Tomas Brimor
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Checklists

                  Task DoD