Uploaded image for project: 'DSpace'
  1. DSpace
  2. DS-4122

Create Integration Tests to prove access restricted Communities/Collections cannot be accessed anonymously

    XMLWordPrintable

    Details

    • Attachments:
      0
    • Comments:
      2
    • Documentation Status:
      Needed

      Description

      This ticket corresponds to task 4.14 "Enforce Community/Collection Access Restrictions" in our DSpace 7 Development Planning spreadsheet.  To make this task actionable, we have decided to require Integration Tests to prove this functionality works.

      Tests should prove:

      • Admins can still access Communities/Collections that are restricted
      • Community / Collection Admins can still access Communities/Collections that are restricted
      • Users with specific rights can  still access Communities/Collections that are restricted
      • Anonymous users CANNOT access Communities/Collections that are restricted
      • Additionally, when lists of Communities/Subcommunities/Collections are returned (e.g. in Browse by Community/Collection functionality) access restricted Communities or Collections should be filtered out. (This may require a bug fix to the existing REST API implementation...possibly rewriting this feature using a Solr-based query approach & a LinkRestRepository)

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              bollini Andrea Bollini (4Science)
              Reporter:
              tdonohue Tim Donohue
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: