Member Nodes

While calling MN.getLogRecords() on the KUBI MN, it looks like all log records are publicly viewable. While this may not be an issue, some repositories do not equate public read access to objects with public read access of the logs of those objects. This is a policy decision for the Biodiversity Institute (Is it okay that anyone can determine who (via IP or certificate subject) has been accessing KUBI objects?). Note that the "MN.getLogRecords()":http://mule1.dataone.org/ArchitectureDocs-current/apis/MN_APIs.html#MNCore.getLogRecords API method states "The response MUST contain only records for which the requestor has permission to read." Log records are shown at https://bidataone.nhm.ku.edu/mn/v1/log. I'm just bringing brining this to CJ and Aimee's attention so they can clarify that their MN policy on reading log records.