Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id EE97A200D23 for ; Thu, 19 Oct 2017 21:53:05 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id ED1381609EE; Thu, 19 Oct 2017 19:53:05 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id 3E8691609D7 for ; Thu, 19 Oct 2017 21:53:05 +0200 (CEST) Received: (qmail 91326 invoked by uid 500); 19 Oct 2017 19:53:04 -0000 Mailing-List: contact dev-help@chemistry.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@chemistry.apache.org Delivered-To: mailing list dev@chemistry.apache.org Delivered-To: moderator for dev@chemistry.apache.org Received: (qmail 88557 invoked by uid 99); 19 Oct 2017 16:35:23 -0000 X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 2.174 X-Spam-Level: ** X-Spam-Status: No, score=2.174 tagged_above=-999 required=6.31 tests=[DKIM_ADSP_CUSTOM_MED=0.001, FROM_MISSPACED=0.001, NML_ADSP_CUSTOM_MED=1.2, SPF_SOFTFAIL=0.972] autolearn=disabled MIME-Version: 1.0 Message-ID: Subject: Re: Checking user access control References: From: "krzysztoffzielinski@gmail.com" In-Reply-To: Content-Type: text/plain; charset="iso-8859-1" x-ponymail-sender: ecc74a61f02f963c775ecf372330514902c9a258 Date: Thu, 19 Oct 2017 16:35:19 -0000 x-ponymail-agent: PonyMail Composer/0.2 To: X-Mailer: LuaSocket 3.0-rc1 archived-at: Thu, 19 Oct 2017 19:53:06 -0000 Unfortunately, the tool doesnt work for me due to spnego authentication problem :( Thanks anyway On 2017-10-19 16:16, Florian Müller wrote: > Check with the CMIS Workbench. The Object tab shows the allowable > actions. > > > - Florian > > > > Thank you, Florian! > > > > I am using 0.11.0 version. > > > > The problem is I get same set of allowable actions for every user. Like > > user that you set on session parameters is not considered. Or do I > > need a > > special config to read allowable actions per user? > > > > Thanks a lot > > Krzysztof > > > > On 19 Oct 2017 3:24 pm, "Florian Müller" wrote: > > > > Hi, > > > > The allowable actions are the best way to check the permissions. > > > > The hasAllowableAction() method has been added more than 3 years ago. > > Which OpenCMIS version are you using? You should definitely update! > > > > > > - Florian > > > > > > Hello All > >> > >> Whats the best way to check user's access to documents using cmis > >> library? > >> > >> I can see getAllowableActions() and getAcls() methods on the document, > >> and documentation shows hasAllowableAction(Action.CAN_DELETE_OBJECT), > >> but i cant see the method on the cmsobject. > >> > >> unfortunately, i can rely on alfresco security model as we > >> authenticate with one user id only. > >> > >> I will appreciate any suggestions. > >> > >> Regards > >> Krzysztof > >> >