[MGNLUI-7257] Deleting JCR items needs access to root which might lead to access denied exception Created: 21/Jun/22 Updated: 27/Sep/22 Resolved: 21/Sep/22 |
|
| Status: | Closed |
| Project: | Magnolia UI |
| Component/s: | None |
| Affects Version/s: | 6.2.20 |
| Fix Version/s: | 6.3.0, 6.2.25 |
| Type: | Bug | Priority: | Neutral |
| Reporter: | Carlos Cantalapiedra | Assignee: | Roman Kovařík |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Σ Remaining Estimate: | Not Specified | Remaining Estimate: | Not Specified |
| Σ Time Spent: | Not Specified | Time Spent: | Not Specified |
| Σ Original Estimate: | Not Specified | Original Estimate: | Not Specified |
| Attachments: |
|
|||||||||||||||||||||||||||||||||||
| Issue Links: |
|
|||||||||||||||||||||||||||||||||||
| Sub-Tasks: |
|
|||||||||||||||||||||||||||||||||||
| Template: |
|
|||||||||||||||||||||||||||||||||||
| Acceptance criteria: |
Empty
|
|||||||||||||||||||||||||||||||||||
| Task DoD: |
[X]*
Doc/release notes changes? Comment present?
[X]*
Downstream builds green?
[X]*
Solution information and context easily available?
[X]*
Tests
[X]*
FixVersion filled and not yet released
[ ] 
Architecture Decision Record (ADR)
|
|||||||||||||||||||||||||||||||||||
| Bug DoR: |
[ ]*
Steps to reproduce, expected, and actual results filled
[ ]*
Affected version filled
|
|||||||||||||||||||||||||||||||||||
| Date of First Response: | ||||||||||||||||||||||||||||||||||||
| Epic Link: | Maintenance of vaadin8 framework | |||||||||||||||||||||||||||||||||||
| Sprint: | Nucleus 19 | |||||||||||||||||||||||||||||||||||
| Story Points: | 5 | |||||||||||||||||||||||||||||||||||
| Team: | ||||||||||||||||||||||||||||||||||||
| Description |
Steps to reproduce
If you click anywhere else, the error doesn't happen, it has the be a checkbox This happens, because there is a weird interaction with a deleted node directly under "/" at this point, please have a look. Attached the full log stack trace. |
| Comments |
| Comment by Roman Kovařík [ 07/Sep/22 ] |
|
Discovery: Vaadin sometimes need to work with already deleted item(s). For that we create tmp node/property at the root level which is not saved (is removed before Session#save) and therefore gone in following requests. So far so good. Problem occurs if the user doesn't have access to root node:
|
| Comment by Adam Jones [ 08/Sep/22 ] |
|
Pair with fcherchi |