Project

General

Profile

Actions

Bug #4733

open

Checking the permission of the user before he/she saves a data package to metacat

Added by Jing Tao almost 15 years ago. Updated almost 15 years ago.

Status:
New
Priority:
Normal
Assignee:
Category:
morpho - general
Target version:
Start date:
02/04/2010
Due date:
% Done:

0%

Estimated time:
Bugzilla-Id:
4733

Description

Currently morpho uploads data files first, then the eml document.

On moropho, a user adds a data file to an eml document on which he doesn't have WRITE permission. Then the user tries to save the new data package into a metacat. The data file will be upload successfully since it was inserting. But the eml updating will fail. In this case, the data file object only can be accessible by the user himself. The data file was stranded.

We can added a checking permission before user saving the data package. I talked with Mike and he told me that metacat 1.9.2 has new an API named isAuthorized. It takes three parameters: permission, resourceId and sessionid. It will check if the sessionid has the permission on the resourceID. Sounds like morpho can call this method before saving to metacat.

Actions

Also available in: Atom PDF