ich found an
unexpected behavior of the methods Session.checkPermission() and Session.hasPermission().
throws an AccessControlException although the correct permission is set.
Session.hasPermission() results in a ‘correct’ return value with “true”.
I attached an
JUnit-Test (with a repository.xml), perhaps someone can verify this as a bug …
or do I perhaps something wrong?
From just looking at the code of the unit test: the result of the hasPermission() calls are not checked – do they all actually return "true"? Secondly, the checkPermission() tests have a fail() when they _do not_ throw an AccessControlException. AFAIU it should be considered wrong if the exception is thrown, since the user should have all read/write rights.