Uploaded image for project: 'Jackrabbit Oak'
  1. Jackrabbit Oak
  2. OAK-51 Access Control Management
  3. OAK-952

AccessControlValidator: fail for ACEs created for any of the admin principals

    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Resolved
    • Minor
    • Resolution: Won't Fix
    • None
    • None
    • core
    • None

    Description

      we may consider failing any AC modification if the principal associated with
      a given ACE is either the system principal, an admin principal or one of the principals listed as admin in the permission configuration.

      while having ACEs for those prinicpals don't have an effect it might be confusing that they can be created in the first place and may create a wrong sense of security.

      Attachments

        Issue Links

          Activity

            People

              Unassigned Unassigned
              angela Angela Schreiber
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: