[OAK-6212] AccessControlAction: minor improvement when user or group privileges are empty - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.7.0, 1.8.0
Component/s: core
Labels:
None

Description

the current code avoids retrieving the ac policy only if both the configured user and group privileges are empty. this be improved by comparing the configured privileges with the type of the authorizable to be processed. Instead of

if (groupPrivilegeNames.length == 0 && userPrivilegeNames.length == 0) {
            log.debug("No privileges configured for groups and users; omit ac setup.");
            return;
        }

and later testing for >1 privileges again it should do something like

if (groupPrivilegeNames.length == 0 && authorizable.isGroup()) {
    // log + return
} else if (userPrivilegeNames.length == 0 && !authorizable.isGroup()) {
   // log + return
}

alex.parvulescu, fyi.

Attachments

Activity

People

Assignee:: Angela Schreiber

Reporter:: Angela Schreiber

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 11/May/17 13:12

Updated:: 30/May/17 08:38

Resolved:: 11/May/17 15:20