Project

General

Profile

Task #2430

Bug #2429: knb mn's failing certain authorization tests

equivIDs of the rightsHolder getting NotAuthorized exceptions

Added by Rob Nahf over 12 years ago. Updated over 12 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Metacat
Start date:
2012-03-02
Due date:
% Done:

100%

Milestone:
CCI-1.0.0
Product Version:
*
Story Points:
Sprint:

Description

for a test object with rightsHolder "CN=testPerson,DC=dataone,DC=org", and no accessPolicy,

client "CN=testMappedPerson,DC=dataone,DC=org" with subject info:

<?xml version="1.0" encoding="UTF-8"?>


CN=testMappedPerson,DC=dataone,DC=org
testMappedPerson_givenName
testMappedPerson_familyName
CN=testPerson,DC=dataone,DC=org


CN=testPerson,DC=dataone,DC=org
testPerson_givenName
testPerson_familyName
testGroup
CN=testMappedPerson,DC=dataone,DC=org
true

/d1:subjectInfo

gets NotAuthorized returned from isAuthorized against that object.

History

#1 Updated by Chris Jones over 12 years ago

  • Status changed from New to In Progress
  • Assignee set to Chris Jones

#2 Updated by Chris Jones over 12 years ago

I've updated isAuthorized() to insert the symbolic verified user into the equivalent subject list for each person listed (not just the primary). Wrote a metacat test that now succeeds in this scenario. Needs to be tested via d1_integration.

#3 Updated by Ben Leinfelder over 12 years ago

  • Status changed from In Progress to Closed

This is woking for me - may have been resolved earlier or as part of other bug fixes related to authorization.

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 14.8 MB)