From dev-return-31311-apmail-jackrabbit-dev-archive=jackrabbit.apache.org@jackrabbit.apache.org Thu Apr 28 08:09:48 2011 Return-Path: X-Original-To: apmail-jackrabbit-dev-archive@www.apache.org Delivered-To: apmail-jackrabbit-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id CF1C6299 for ; Thu, 28 Apr 2011 08:09:48 +0000 (UTC) Received: (qmail 26971 invoked by uid 500); 28 Apr 2011 08:09:48 -0000 Delivered-To: apmail-jackrabbit-dev-archive@jackrabbit.apache.org Received: (qmail 26780 invoked by uid 500); 28 Apr 2011 08:09:48 -0000 Mailing-List: contact dev-help@jackrabbit.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@jackrabbit.apache.org Delivered-To: mailing list dev@jackrabbit.apache.org Received: (qmail 26690 invoked by uid 99); 28 Apr 2011 08:09:47 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 28 Apr 2011 08:09:47 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=5.0 tests=ALL_TRUSTED,T_RP_MATCHES_RCVD X-Spam-Check-By: apache.org Received: from [140.211.11.116] (HELO hel.zones.apache.org) (140.211.11.116) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 28 Apr 2011 08:09:46 +0000 Received: from hel.zones.apache.org (hel.zones.apache.org [140.211.11.116]) by hel.zones.apache.org (Postfix) with ESMTP id 4E345B7685 for ; Thu, 28 Apr 2011 08:09:08 +0000 (UTC) Date: Thu, 28 Apr 2011 08:09:08 +0000 (UTC) From: "Stefan Guggisberg (JIRA)" To: dev@jackrabbit.apache.org Message-ID: <1196053412.8309.1303978148293.JavaMail.tomcat@hel.zones.apache.org> In-Reply-To: <2109843908.6235.1303920003114.JavaMail.tomcat@hel.zones.apache.org> Subject: [jira] [Commented] (JCR-2951) Item.remove fails if a child-item is not visible to the editing session MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/JCR-2951?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13026188#comment-13026188 ] Stefan Guggisberg commented on JCR-2951: ---------------------------------------- +1 for the patch, thanks! > Item.remove fails if a child-item is not visible to the editing session > ----------------------------------------------------------------------- > > Key: JCR-2951 > URL: https://issues.apache.org/jira/browse/JCR-2951 > Project: Jackrabbit Content Repository > Issue Type: Bug > Components: jackrabbit-core > Reporter: angela > Assignee: angela > Attachments: JCR-2951.patch > > > the following test setup fails: > - a given session is allowed to remove a node > - the node has a policy child node which is not visible to the editing session (missing ac-read permission) > OR the node has another invisible child item which could - based on the permissions above - be removed by that session. > calling Node.remove however fails with accessdeniedexception because the internal remove > mechanism accesses all child items to mark them removed. however, the access is executed > using the regular itemmgr calls that are used to retrieve the items using the JCR API which > results in accessdenied exception as those child items are not visible to the session. > since the items can be removed i would argue that this is a bug in the internal remove process. -- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira