Details

    • Type: Improvement
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: Fedora 4.4.0
    • Fix Version/s: Fedora 4.6.0
    • Component/s: f4-auth
    • Labels:
    • Roadmap Theme:
      API Specification
    • Sprint:
      Sprint 2015 - 15

      Description

      When any of the following Authorization modules are configured,
      * RBACL
      * XACML
      * WebAC

      ..a "fedora:hasAccessRoles" property [1] is created on new resources and a number of RBACL node-types [2] are registered. The "hasAccessRoles" service makes sense for RBACL and XACML, but not for WebAC. Since WebAC is the authorization module which we are encouraging the community to move towards, having the "hasAccessRoles" service exposed is incorrect and confusing.

      [1] https://github.com/fcrepo4/fcrepo-module-auth-rbacl/blob/master/fcrepo-auth-roles-common/src/main/java/org/fcrepo/auth/roles/common/AccessRolesResources.java#L65
      [2] https://github.com/fcrepo4/fcrepo-module-auth-rbacl/blob/master/fcrepo-auth-roles-common/src/main/java/org/fcrepo/auth/roles/common/AccessRolesTypes.java#L69

      This task is to ensure that the "hasAccessRoles" property and the RBACL node-types are not included with WebAC is configured.

        Attachments

          Activity

            People

            • Assignee:
              peichman-umd Peter Eichman
              Reporter:
              awoods Andrew Woods
              Reviewer:
              Andrew Woods
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: