Uploaded image for project: 'OASIS Content Management Interoperability Services (CMIS) TC'
  1. OASIS Content Management Interoperability Services (CMIS) TC
  2. CMIS-404

ACLs: AllowableActions Mapping should be able to map >1 permission to an action

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Domain Model, Schema
    • Labels:
      None
    • Proposal:
      Hide

      Update the AllowableActions mapping so that it can handle 1 or more permissions in a single mapping.

      Show
      Update the AllowableActions mapping so that it can handle 1 or more permissions in a single mapping.

      Description

      The PermissionMapping defined in section 2.8.5.2 (line 641) currently specifies that each AllowableAction is mapped to exactly one permission.

      This works OK in the case where a repository is only supporting the basic CMIS permissions (where there's clearly no interaction between read & delete), but not as well for scenarios where the repository has exposed custom permissions (e.g. compound permissions like "contribute" and "manage" – which may map to "role definitions" in the underlying repository implementation). In those cases, there's no way to express that to perform action Foo, the user needs one or more of the following permissions (contribute, manage).

        Attachments

          Activity

            People

            • Assignee:
              ethang Ethan Gur-esh
              Reporter:
              ethang Ethan Gur-esh
            • Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: