Task #2430
Bug #2429: knb mn's failing certain authorization tests
equivIDs of the rightsHolder getting NotAuthorized exceptions
100%
Description
for a test object with rightsHolder "CN=testPerson,DC=dataone,DC=org", and no accessPolicy,
client "CN=testMappedPerson,DC=dataone,DC=org" with subject info:
<?xml version="1.0" encoding="UTF-8"?>
CN=testMappedPerson,DC=dataone,DC=org
testMappedPerson_givenName
testMappedPerson_familyName
CN=testPerson,DC=dataone,DC=org
CN=testPerson,DC=dataone,DC=org
testPerson_givenName
testPerson_familyName
testGroup
CN=testMappedPerson,DC=dataone,DC=org
true
/d1:subjectInfo
gets NotAuthorized returned from isAuthorized against that object.
History
#1 Updated by Chris Jones almost 13 years ago
- Status changed from New to In Progress
- Assignee set to Chris Jones
#2 Updated by Chris Jones almost 13 years ago
I've updated isAuthorized() to insert the symbolic verified user into the equivalent subject list for each person listed (not just the primary). Wrote a metacat test that now succeeds in this scenario. Needs to be tested via d1_integration.
#3 Updated by Ben Leinfelder almost 13 years ago
- Status changed from In Progress to Closed
This is woking for me - may have been resolved earlier or as part of other bug fixes related to authorization.