Project

General

Profile

Bug #2870

Remove Access of Logs from all but Administrators

Added by Robert Waltz over 12 years ago. Updated over 12 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Robert Waltz
Category:
d1_log_aggregation
Target version:
Sprint-2012.23-Block.3.4
Start date:
2012-06-07
Due date:
% Done:

100%

Milestone:
CCI-1.0.1
Product Version:
*
Story Points:
Sprint:

Description

Comment out portions of code that grants access to public and authenticated users.

Access will be granted only to Administrators and those in the ServiceMethod description for getLogRecords

From CCI 10/20/2012 AHM

public user access: NO

Subjects that have access to CN.getLogRecords():

  • authoritative MN associated principle (node client certificate subject)
  • subjects that have changePermission permission on PID
  • rights holder for PID
  • system administrators and report generators

http://epad.dataone.org/20111019-AHM-CCIT , line 471-505

History

#1 Updated by Robert Waltz over 12 years ago

  • Milestone changed from CCI-1.0.0 to CCI-1.0.1

#2 Updated by Robert Waltz over 12 years ago

  • Status changed from New to In Progress

#3 Updated by Robert Waltz over 12 years ago

  • Status changed from In Progress to Closed

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 14.8 MB)