Uploaded image for project: 'Fedora Repository Project'
  1. Fedora Repository Project
  2. FCREPO-2743

Section 5.0 Support acl:Control in ACLs

    XMLWordPrintable

    Details

    • Type: Story
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: Fedora 5.0.0
    • Component/s: f4-auth
    • Labels:

      Description

      The acl:Control mode indicates the user/role who has permission to modify an ACL. As it is part of the SOLID WAC spec, it needs to be implemented.

      According to the SOLID/WAC: acl:Control is a special-case access mode that gives an agent the ability to view and modify the ACL of a resource. Note that it doesn't automatically imply that the agent has acl:Read or acl:Write access to the resource itself, just to its corresponding ACL document. For example, a resource owner may disable their own Write access (to prevent accidental over-writing of a resource by an app), but be able to change their access levels at a later point (since they retain acl:Control access).

      Thus for this ticket to be consider complete the following must be true:

      1. In order to view, create or modify an ACL Resource (ACL A) of a given Resource (Resource B) , the client must have acl:Control permission on Resource B.
      2. If the previous test fails, a 403 (Forbidden) code should be returned.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              dbernstein Danny Bernstein
              Reporter:
              birkland Aaron Birkland
              Reviewer:
              Peter Eichman
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: