From dev-return-36185-apmail-jackrabbit-dev-archive=jackrabbit.apache.org@jackrabbit.apache.org Wed Sep 5 08:01:15 2012 Return-Path: X-Original-To: apmail-jackrabbit-dev-archive@www.apache.org Delivered-To: apmail-jackrabbit-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id D3E32D00D for ; Wed, 5 Sep 2012 08:01:15 +0000 (UTC) Received: (qmail 8255 invoked by uid 500); 5 Sep 2012 08:01:14 -0000 Delivered-To: apmail-jackrabbit-dev-archive@jackrabbit.apache.org Received: (qmail 7785 invoked by uid 500); 5 Sep 2012 08:01:10 -0000 Mailing-List: contact dev-help@jackrabbit.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@jackrabbit.apache.org Delivered-To: mailing list dev@jackrabbit.apache.org Received: (qmail 7741 invoked by uid 99); 5 Sep 2012 08:01:08 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 05 Sep 2012 08:01:08 +0000 Date: Wed, 5 Sep 2012 19:01:08 +1100 (NCT) From: "Alex Parvulescu (JIRA)" To: dev@jackrabbit.apache.org Message-ID: <1099028872.37900.1346832068277.JavaMail.jiratomcat@arcas> In-Reply-To: <436247328.25970.1345251457957.JavaMail.jiratomcat@arcas> Subject: [jira] [Commented] (JCR-3412) UserManager.findAuthorizables() does not work, if session does not have read access to /home MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/JCR-3412?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13448562#comment-13448562 ] Alex Parvulescu commented on JCR-3412: -------------------------------------- thanks for the suggestion Marcel. I've tried this: AccessControlUtils.getAccessControlList(uAdmSession, path) but I only get a null back. Because of this none of the available util methods work. other ideas? > UserManager.findAuthorizables() does not work, if session does not have read access to /home > -------------------------------------------------------------------------------------------- > > Key: JCR-3412 > URL: https://issues.apache.org/jira/browse/JCR-3412 > Project: Jackrabbit Content Repository > Issue Type: Bug > Components: jackrabbit-core, query, security > Affects Versions: 2.4 > Reporter: Tobias Bocanegra > Attachments: JCR-3412.patch > > > If the session does not have read access to /home, the UserManager.findAuthorizables() does not find anything. > log shows: > org.apache.jackrabbit.core.query.lucene.DescendantSelfAxisQuery Access denied to node id d8cbdd0f-4fe1-473f-b452-219a3eb3d867. > Where as this query works, and returns the user homes the session has read access to: > /jcr:root//element(*,rep:User) -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira