[MGNLCMIS-12] Add cmis role for managing permissions rather than bypassing uri security Created: 31/Jan/14 Updated: 31/Jan/14 |
|
| Status: | Open |
| Project: | CMIS |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | 2.0 |
| Type: | Improvement | Priority: | Neutral |
| Reporter: | Tobias Mattsson | Assignee: | Unassigned |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Template: |
|
| Acceptance criteria: |
Empty
|
| Description |
|
We're currently adding bypasses to uri security that effects all users. Authentication is still performed though but it would be better to give administrators the chance to use the standard authorization mechanism to control access. The bypasses should be removed when updating to 2.0. Note that the code currently adds four bypasses where as 1.x only adds two. |