Ticket #608 (task)
Opened 3 years ago
Last modified 3 years ago
Undeletable read only resources in collections
|Reported by:||douglm||Assigned to:||douglm|
user02 creates a collection writeabletouser01
user01 creates event in that collection user01 sets access on event making it read only to user02
user02 cannot reset the access - doesn't own event. Hierarchical access overridden by explicit access.
Two possible solutions: 1. Call a superuser 2. Always allow write acl access if there is a collection owned by the current user anywhere UP the hierarchy 3. Set the access on the resource as it is created
Creation can occur in 3 ways: PUT, COPY, MOVE (or their equivalent). Acl setting is through the ACL method (or equivalent)
COPY, according to WebDAV ACL, should reset the acls. Explicit setting of acls by the client is required.
08/05/10 10:22:11: Modified by douglm
- component changed from unclassified to core.
- description changed.