Return-Path: 
 <dev-return-35760-apmail-jackrabbit-dev-archive=jackrabbit.apache.org@jackrabbit.apache.org>
X-Original-To: apmail-jackrabbit-dev-archive@www.apache.org
Delivered-To: apmail-jackrabbit-dev-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id CE528DC06
	for <apmail-jackrabbit-dev-archive@www.apache.org>;
 Tue, 10 Jul 2012 12:50:40 +0000 (UTC)
Received: (qmail 20416 invoked by uid 500); 10 Jul 2012 12:50:40 -0000
Delivered-To: apmail-jackrabbit-dev-archive@jackrabbit.apache.org
Received: (qmail 20003 invoked by uid 500); 10 Jul 2012 12:50:38 -0000
Mailing-List: contact dev-help@jackrabbit.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@jackrabbit.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@jackrabbit.apache.org>
List-Post: <mailto:dev@jackrabbit.apache.org>
List-Id: <dev.jackrabbit.apache.org>
Reply-To: dev@jackrabbit.apache.org
Delivered-To: mailing list dev@jackrabbit.apache.org
Received: (qmail 18938 invoked by uid 99); 10 Jul 2012 12:50:36 -0000
Received: from issues-vm.apache.org (HELO issues-vm) (140.211.11.160)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 10 Jul 2012 12:50:36 +0000
Received: from isssues-vm.apache.org (localhost [127.0.0.1])
	by issues-vm (Postfix) with ESMTP id A9161141BF8
	for <dev@jackrabbit.apache.org>; Tue, 10 Jul 2012 12:50:35 +0000 (UTC)
Date: Tue, 10 Jul 2012 12:50:35 +0000 (UTC)
From: "Unico Hommes (JIRA)" <jira@apache.org>
To: dev@jackrabbit.apache.org
Message-ID: <468559657.28013.1341924635695.JavaMail.jiratomcat@issues-vm>
Subject: [jira] [Created] (JCR-3382) ItemManager.getNode does not do a
 permission check when the item data is in the item manager cache
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394

Unico Hommes created JCR-3382:
---------------------------------

             Summary: ItemManager.getNode does not do a permission check when the item data is in the item manager cache
                 Key: JCR-3382
                 URL: https://issues.apache.org/jira/browse/JCR-3382
             Project: Jackrabbit Content Repository
          Issue Type: Bug
            Reporter: Unico Hommes
            Assignee: Unico Hommes
             Fix For: 2.2.13, 2.4.3, 2.6


Read access should be checked irrespective of whether the item data is in the cache or not. Something might have changed between first reading the node and reading the node again that impacts read access.

We are running into the situation where node.hasNode() returns false for a node that is in the item manager cache and for which access was revoked but node.getNode() returns the node anyway. So node.hasNode is implemented in the right way, but node.getNode is not.


--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira