Return-Path: 
 <commits-return-4725-apmail-couchdb-commits-archive=couchdb.apache.org@couchdb.apache.org>
Delivered-To: apmail-couchdb-commits-archive@www.apache.org
Received: (qmail 97212 invoked from network); 13 Jul 2010 14:47:35 -0000
Received: from unknown (HELO mail.apache.org) (140.211.11.3)
  by 140.211.11.9 with SMTP; 13 Jul 2010 14:47:35 -0000
Received: (qmail 48566 invoked by uid 500); 13 Jul 2010 14:47:35 -0000
Delivered-To: apmail-couchdb-commits-archive@couchdb.apache.org
Received: (qmail 48514 invoked by uid 500); 13 Jul 2010 14:47:35 -0000
Mailing-List: contact commits-help@couchdb.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:commits-help@couchdb.apache.org>
List-Unsubscribe: <mailto:commits-unsubscribe@couchdb.apache.org>
List-Post: <mailto:commits@couchdb.apache.org>
List-Id: <commits.couchdb.apache.org>
Reply-To: dev@couchdb.apache.org
Delivered-To: mailing list commits@couchdb.apache.org
Received: (qmail 48507 invoked by uid 99); 13 Jul 2010 14:47:34 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 13 Jul 2010 14:47:34 +0000
X-ASF-Spam-Status: No, hits=-2000.0 required=10.0
	tests=ALL_TRUSTED
X-Spam-Check-By: apache.org
Received: from [140.211.11.4] (HELO eris.apache.org) (140.211.11.4)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 13 Jul 2010 14:47:32 +0000
Received: by eris.apache.org (Postfix, from userid 65534)
	id 468C523889D7; Tue, 13 Jul 2010 14:46:39 +0000 (UTC)
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Subject: svn commit: r963742 - in /couchdb/branches/0.11.x:
 share/www/script/test/users_db.js src/couchdb/couch_httpd_auth.erl
Date: Tue, 13 Jul 2010 14:46:39 -0000
To: commits@couchdb.apache.org
From: jchris@apache.org
X-Mailer: svnmailer-1.0.8
Message-Id: <20100713144639.468C523889D7@eris.apache.org>
X-Virus-Checked: Checked by ClamAV on apache.org

Author: jchris
Date: Tue Jul 13 14:46:38 2010
New Revision: 963742

URL: http://svn.apache.org/viewvc?rev=963742&view=rev
Log:
backport r963723 (ability to delete user docs) from trunk

Modified:
    couchdb/branches/0.11.x/share/www/script/test/users_db.js
    couchdb/branches/0.11.x/src/couchdb/couch_httpd_auth.erl

Modified: couchdb/branches/0.11.x/share/www/script/test/users_db.js
URL: http://svn.apache.org/viewvc/couchdb/branches/0.11.x/share/www/script/test/users_db.js?rev=963742&r1=963741&r2=963742&view=diff
==============================================================================
--- couchdb/branches/0.11.x/share/www/script/test/users_db.js (original)
+++ couchdb/branches/0.11.x/share/www/script/test/users_db.js Tue Jul 13 14:46:38 2010
@@ -85,7 +85,11 @@ couchTests.users_db = function(debug) {
       T(e.error == "unauthorized")
       T(/conflict/.test(e.reason))
     }
-
+    // you can delete a user doc
+    s = CouchDB.session().userCtx;
+    T(s.name == null);
+    T(s.roles.indexOf("_admin") !== -1);
+    T(usersDb.deleteDoc(jchrisWithConflict).ok);
   };
   
   run_on_modified_server(

Modified: couchdb/branches/0.11.x/src/couchdb/couch_httpd_auth.erl
URL: http://svn.apache.org/viewvc/couchdb/branches/0.11.x/src/couchdb/couch_httpd_auth.erl?rev=963742&r1=963741&r2=963742&view=diff
==============================================================================
--- couchdb/branches/0.11.x/src/couchdb/couch_httpd_auth.erl (original)
+++ couchdb/branches/0.11.x/src/couchdb/couch_httpd_auth.erl Tue Jul 13 14:46:38 2010
@@ -237,18 +237,21 @@ auth_design_doc(DocId) ->
         {
             <<"validate_doc_update">>,
             <<"function(newDoc, oldDoc, userCtx) {
-                if ((oldDoc || newDoc).type != 'user') {
-                    throw({forbidden : 'doc.type must be user'});
-                } // we only validate user docs for now
                 if (newDoc._deleted === true) {
-                    // allow deletes by admins and matching users 
+                    // allow deletes by admins and matching users
                     // without checking the other fields
-                    if ((userCtx.roles.indexOf('_admin') != -1) || (userCtx.name == oldDoc.name)) {
+                    if ((userCtx.roles.indexOf('_admin') !== -1) ||
+                        (userCtx.name == oldDoc.name)) {
                         return;
                     } else {
-                        throw({forbidden : 'Only admins may delete other user docs.'});
+                        throw({forbidden: 'Only admins may delete other user docs.'});
                     }
                 }
+
+                if ((oldDoc && oldDoc.type !== 'user') || newDoc.type !== 'user') {
+                    throw({forbidden : 'doc.type must be user'});
+                } // we only allow user docs for now
+
                 if (!newDoc.name) {
                     throw({forbidden : 'doc.name is required'});
                 }