jsr-283
  1. jsr-283
  2. JSR_283-470

Define standard privilege "REMOVE_NODE"

    Details

    • Type: Bug Bug
    • Status: Resolved
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: current
    • Fix Version/s: milestone 1
    • Component/s: access control
    • Labels:
      None
    • Environment:

      Operating System: All
      Platform: All

    • Issuezilla Id:
      470

      Description

      Currently, permission to remove a node requires REMOVE_CHILD_NODES privilege on
      the parent node. No specific privilege is required on the node actually being
      removed. Some repositories natively model "remove" as a "delete" instead of a
      "unlink" and restrict deletion based on the access control policy on the node
      being deleted.

      Proposal: Introduce an additional privilege, REMOVE_NODE. Removing a node
      requires REMOVE_NODE on that node and REMOVE_CHILD_NODE on the parent node.

      (A repository that uses the "unlink" model might have REMOVE_NODE in every
      access control policy, so that removal is effectively controlled by
      REMOVE_CHILD_NODE. Conversely a repository that uses the "delete" model might
      have REMOVE_CHILD_NODE in every access control policy.)

        Issue Links

          Activity

          Hide
          dpitfiel added a comment -

          Name of the new privilege depends on outcome of issue #468.

          Show
          dpitfiel added a comment - Name of the new privilege depends on outcome of issue #468.
          Hide
          fguillaume added a comment -

          +1, the ECMs I'm used to follow this model too, and it gives great flexibility.

          Show
          fguillaume added a comment - +1, the ECMs I'm used to follow this model too, and it gives great flexibility.
          Hide
          anchela added a comment -

          decisions taken at the ac conference (19. mai 2008):

          • To be included in the list of new privileges compiled by Nicolas (see #468).
          • All of these proposed privileges will then be considered later.
          Show
          anchela added a comment - decisions taken at the ac conference (19. mai 2008): To be included in the list of new privileges compiled by Nicolas (see #468). All of these proposed privileges will then be considered later.
          Hide
          anchela added a comment -

          corrigenda: 'list of new privileges' corresponds to issue #486.

          -> add dependency.

          Show
          anchela added a comment - corrigenda: 'list of new privileges' corresponds to issue #486. -> add dependency.
          Hide
          Peeter Piegaze added a comment -

          Fixed. Privilege jcr:removeNode privilege added

          Show
          Peeter Piegaze added a comment - Fixed. Privilege jcr:removeNode privilege added

            People

            • Assignee:
              jsr-283-issues
              Reporter:
              dpitfiel
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: