From dev-return-36194-apmail-jackrabbit-dev-archive=jackrabbit.apache.org@jackrabbit.apache.org Wed Sep 5 12:35:10 2012 Return-Path: X-Original-To: apmail-jackrabbit-dev-archive@www.apache.org Delivered-To: apmail-jackrabbit-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 67175D261 for ; Wed, 5 Sep 2012 12:35:10 +0000 (UTC) Received: (qmail 70794 invoked by uid 500); 5 Sep 2012 12:35:10 -0000 Delivered-To: apmail-jackrabbit-dev-archive@jackrabbit.apache.org Received: (qmail 70425 invoked by uid 500); 5 Sep 2012 12:35:09 -0000 Mailing-List: contact dev-help@jackrabbit.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@jackrabbit.apache.org Delivered-To: mailing list dev@jackrabbit.apache.org Received: (qmail 70368 invoked by uid 99); 5 Sep 2012 12:35:07 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 05 Sep 2012 12:35:07 +0000 Date: Wed, 5 Sep 2012 23:35:07 +1100 (NCT) From: =?utf-8?Q?Thomas_M=C3=A4rz_=28JIRA=29?= To: dev@jackrabbit.apache.org Message-ID: <1371006330.38507.1346848507841.JavaMail.jiratomcat@arcas> In-Reply-To: <436247328.25970.1345251457957.JavaMail.jiratomcat@arcas> Subject: [jira] [Commented] (JCR-3412) UserManager.findAuthorizables() does not work, if session does not have read access to /home MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/JCR-3412?page=3Dcom.atlassian.j= ira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=3D134486= 72#comment-13448672 ]=20 Thomas M=C3=A4rz commented on JCR-3412: ---------------------------------- /home is another node in the default ws. =20 > UserManager.findAuthorizables() does not work, if session does not have r= ead access to /home > -------------------------------------------------------------------------= ------------------- > > Key: JCR-3412 > URL: https://issues.apache.org/jira/browse/JCR-3412 > Project: Jackrabbit Content Repository > Issue Type: Bug > Components: jackrabbit-core, query, security > Affects Versions: 2.4 > Reporter: Tobias Bocanegra > Attachments: AutorizablesTest.java.patch, JCR-3412.patch > > > If the session does not have read access to /home, the UserManager.findAu= thorizables() does not find anything. > log shows: > org.apache.jackrabbit.core.query.lucene.DescendantSelfAxisQuery Access de= nied to node id d8cbdd0f-4fe1-473f-b452-219a3eb3d867. > Where as this query works, and returns the user homes the session has rea= d access to: > /jcr:root//element(*,rep:User) -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrato= rs For more information on JIRA, see: http://www.atlassian.com/software/jira