Uploaded image for project: 'Fedora Repository Project'
  1. Fedora Repository Project
  2. FCREPO-1760

WebAC: Non-Admin user gets 404 if target has versions

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: Fedora 4.4.0
    • Fix Version/s: Fedora 4.5.0
    • Component/s: None
    • Labels:
    • Sprint:
      Sprint 2015 - 12

      Description

      When using WebAC, if a non-admin user tries to access a resource to which that should have permission AND that resource has versions, a 404 is returned.
      Note: admin users have no issue.

      To reproduce:
      - Create acl/authorization:
      ===========
      PREFIX acl: <http://www.w3.org/ns/auth/acl#>
      PREFIX pcdm: <http://pcdm.org/models#>

      INSERT {
      <> a acl:Authorization ;
      acl:accessToClass pcdm:Object ;
      acl:mode acl:Read, acl:Write;
      acl:agent “testuser” .
      } WHERE { }
      ===========
      - Create a resource of type "pcdm:Object" and link to the acl:
      ===========
      PREFIX acl: <http://www.w3.org/ns/auth/acl#>
      PREFIX pcdm: <http://pcdm.org/models#>

      INSERT {
      <> a pcdm:Object;
          acl:accessControl </fcrepo/rest/my-acls/acl>
      } WHERE { }
      ===========
      - Create a version of the resource
      ===========
      curl -ufedoraAdmin:secret3 -i -XPOST -H"slug: v0" localhost:8080/fcrepo/rest/resource/fcr:versions
      ===========
      - Access the resource as "fedoraAdmin" -- works
      ===========
       curl -ufedoraAdmin:secret3 -i localhost:8080/fcrepo/rest/resource
      ===========
      - Access the resource as "testuser" -- FAILS with at 404
      ===========
       curl -utestuser:password1 -i localhost:8080/fcrepo/rest/resource
      ===========

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                whikloj Jared Whiklo
                Reporter:
                awoods Andrew Woods
                Reviewer:
                Andrew Woods
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: