manifoldcf-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Karl Wright <>
Subject RE: [jira] [Commented] (CONNECTORS-886) Add support for Parent folder security
Date Fri, 07 Feb 2014 22:45:33 GMT
Hi Abe-san,

It depends. If acls from the whole hierarchy are obtained when you get
the parent acls, then the way repositorydocument does it now makes no
sense. But if only one parent's acls are fetched, then
repositorydocument's current structure is right.

I am out of town this weekend but we can talk in more detail Monday
morning Japan time.


Sent from my Windows Phone
From: Shinichiro Abe (JIRA)
Sent: 2/7/2014 3:56 PM
Subject: [jira] [Commented] (CONNECTORS-886) Add support for Parent
folder security


Shinichiro Abe commented on CONNECTORS-886:

Thanks for your suggestion. Okay. DirectoryACLs methods may be useful.
Though I have known these, I thought these are specific methods for
gts connecter... I'll try to write patch again.

Do I need to think the possibility of new filtering field except for
'share/directory/document' in the future?
Special user token field etc.
I worry about hard-coded [allow|deny] x "3" fields. If a user wants to
use 2 field, I will not create BooleanQuery of 3 fields and I will
create BooleanQuery of 2 fields. Is this okay?

> Add support for Parent folder security
> --------------------------------------
>                 Key: CONNECTORS-886
>                 URL:
>             Project: ManifoldCF
>          Issue Type: Improvement
>          Components: JCIFS connector, Solr-4.x-component
>            Reporter: Shinichiro Abe
>             Fix For: ManifoldCF 1.6
>         Attachments: CONNECTORS-886-forSolrPlugin.patch, CONNECTORS-886.patch
> Windows server checks the access permission of a share folder and the security permission
of a file document when we access a file via network.
> As far as I look into that, Windows does not take subfolder's security permissions into
> There is a case that someone who is admin wants to configure 'Everyone' for 'share folders'
and configure each access permissions for 'sub folders'.
> E.g. \\ShareFolder\Admin --> Admin folder for administrative user,  \\ShareFolder\Sales
 --> Sales folder for sales user.
> The users put files in 'sub folders', then the permission of these files will be inherited
from the permission of 'sub folders'.
> I'd like to support access permissions for 'sub folders' in jcifs/solr connector.
> In general, we expect file's permission to be inherited from parent folder.
> So I want to manage parent's security by providing new [allow|deny]_token fields.

This message was sent by Atlassian JIRA

View raw message