Metacat: Issueshttps://projects.ecoinformatics.org/ecoinfo/https://projects.ecoinformatics.org/ecoinfo/ecoinfo/favicon.ico?14691340362016-07-20T00:52:01ZEcoinformatics Redmine
Redmine Feature #7058 (Resolved): Action reindexall should be asynchronizedhttps://projects.ecoinformatics.org/ecoinfo/issues/70582016-07-20T00:52:01ZJing Taotao@nceas.ucsb.edu
<p>Currently when Metacat accepts the "reindexall" action request, it will sent the response back after all identifiers are put into the hazelcast server. If the server has a large set of objects, this will be cause a long waiting time. So the response will be asynchronized.</p> Bug #6161 (Closed): Add access_log indexes to support DataONE log retrievalhttps://projects.ecoinformatics.org/ecoinfo/issues/61612013-10-18T19:14:38Zben leinfelderleinfelder@nceas.ucsb.eduTask #5930 (Closed): Add a configuration property to turn on/off the indexing processes (SOLR ind...https://projects.ecoinformatics.org/ecoinfo/issues/59302013-04-30T22:24:06ZJing Taotao@nceas.ucsb.edu
<p>So that Metacat installations can decide which (or both) they want to use.</p>
<p>The proposed the property is:<br />dbquery.enabledEngines=pathquery,solr</p>
<p>The default value is both on.</p> Bug #5620 (Resolved): access order="denyFirst" now means public deny (except pre-existing docs)https://projects.ecoinformatics.org/ecoinfo/issues/56202012-06-06T17:07:35Zgastil gastilmarygastil@yahoo.com
<p>This is a feature, not a bug:<br />Metacat 2.0.0 no longer implements denyFirst, only allowFirst.</p>
<p>Ben explained to me why the same eml doc already-submitted to the metacat2 installation on lava is public read while the same eml doc submitted to the metacat2 on demo2 makes it not public read.</p>
<p>Observation:<br /><a class="external" href="https://demo2.test.dataone.org/knb/metacat/knb-lter-mcr.2003.2/default">https://demo2.test.dataone.org/knb/metacat/knb-lter-mcr.2003.2/default</a><br />User public does not have permission to read the document with the docid knb-lter-mcr.2003.2<br /><a class="external" href="http://lava.lternet.edu:8080/knb/metacat/knb-lter-mcr.2003.2/default">http://lava.lternet.edu:8080/knb/metacat/knb-lter-mcr.2003.2/default</a><br />displays fine (not restricted)</p>
<p>That same eml doc on the LTER metacat 1.9.5 is public read.</p>
<p>The reason:<br />Metacat 2.0.0 no longer implements denyFirst, only allowFirst. EML docs with order="allowFirst" are not affected by this change. EML docs already in metacat before the upgrade will not be affected. EML docs with order="denyFirst" which are updated or inserted after the upgrade will not be public read. This is to protect any possible deny rules not implemented (even if those eml docs contain no deny rules.)</p>
<p>Since the EML 2.1.0 specification still contains denyFirst and does not warn of this change in Metacat, users may be caught unaware.</p>
<p>Im runing a pathQuery on LTER's metacat 1.9.5 now to see how widely denyFirst is used. I'll post summary results as a comment to this "bug".</p> Bug #3781 (Resolved): Add admin user/password configuration to esa skin configurationhttps://projects.ecoinformatics.org/ecoinfo/issues/37812009-01-27T23:31:21ZMichael Daigledaigle@nceas.ucsb.edu
<p>ESA uses and admin account when datasets are registered. This needs to be configurable in the esa skin config. This is especially since the admin password cannot be hard coded.</p> Bug #3761 (Closed): Add ability for admin user to log outhttps://projects.ecoinformatics.org/ecoinfo/issues/37612009-01-21T19:15:20ZMichael Daigledaigle@nceas.ucsb.edu
<p>Currently in the configuration utility, the admin user can only log in as a new user. Should also have the ability to log out.</p> Bug #3729 (Resolved): Add admin names as dropdown in configuration loginhttps://projects.ecoinformatics.org/ecoinfo/issues/37292009-01-07T16:32:33ZMichael Daigledaigle@nceas.ucsb.edu
<p>Currently the user has to type in the full distinguished admin name to log in using ldap.</p>
<p>Instead, it would be nice if a dropdown of existing configured admins was available.</p> Bug #2984 (Closed): "AccessControlList.getACL" returns outdated XML structurehttps://projects.ecoinformatics.org/ecoinfo/issues/29842007-10-16T00:27:57ZChris Barteaubarteau@nceas.ucsb.edu
<p>The "MetCatServlet.handleGetAccessControlAction" calls another method "AccessControlList.getACL". The resulting XML does not seem to follow the structure defined the the XmlSchema of eml-access.xsd.</p>
<p>eMail from Matt regarding this:</p>
<p>It appears that Metacat is still generating the old beta6 version of EML <br />using that method, rather than following the EML 2.0.1 specification. I <br />do not think any software relies on this behavior, although we should <br />check to see if Morpho does -- that would be the only one I think. If <br />not, we should fix it to produce EML 2.0.1, but do so by changing the <br />method signature to allow clients to specify which version they want. <br />For example:</p>
<p>public Reader getACL(String docid, String namespace) throws<br /> NamespaceNotSupportedException;</p>
<p>The exception would be thrown when Metacat doesn't know how to generate <br />a particular ACL syntax. One reason I would want this is that there is <br />increasing use of SAML for ACL docs, and it would be a good thing to <br />have Metacat support ACL statements in SAML format as well as <br />eml-access. It would also allow us to support future eml versions.</p> Bug #2826 (Resolved): add ability for search engines to index metacat documentshttps://projects.ecoinformatics.org/ecoinfo/issues/28262007-04-17T22:40:54ZMatt Jonesjones@nceas.ucsb.edu
<p>Need to enable search engines to index metacat contents. This involves (1) making download URLs for each XML document that do not use the dynamic query syntax, and (2) providing a site map of the contents of the metacat server.</p>
<p>Task (1) is complete, and supports urls of this syntax:<br /> <a class="external" href="http://localhost:8180/knb/metacat/test.1.1/knb">http://localhost:8180/knb/metacat/test.1.1/knb</a><br />If a URL like this is processed, and subsequent 'action' parameters are ignored and are not processed.</p>
<p>Task (2) is yet to be finished.</p> Bug #2818 (Closed): access_log bypassed by replicationhttps://projects.ecoinformatics.org/ecoinfo/issues/28182007-04-12T18:44:00ZJing Taotao@nceas.ucsb.edu
<p>Matt just check the access_log talbe in knb metacat and found there are only 397 insert/update/delete action from 2006 Aug. to now. We think replication bypasses the access log. If replication calls the main metacat api, the logging would happen automatically.</p> Bug #1681 (Resolved): Access not checked while file uploadinghttps://projects.ecoinformatics.org/ecoinfo/issues/16812004-09-13T21:14:52ZSaurabh Gargsgarg@nceas.ucsb.edu
<p>When user with id X uploads data as act.1.1, another user with id Y can upload <br />act.1.2 without requiring access for act.1.1</p> Bug #1674 (Resolved): Access control for eml-2.1.0 documentshttps://projects.ecoinformatics.org/ecoinfo/issues/16742004-09-10T22:12:47ZSaurabh Gargsgarg@nceas.ucsb.edu
<p>This bug is continuing from bug# 968 and is dependent on bug # 1132</p>
<p>Access control to handle eml version 2.0.1 has been implemented. But when new <br />version of eml (v2.1.0) is released, access control for handling that version <br />will be required.</p> Bug #968 (Resolved): Access control for eml2 documentshttps://projects.ecoinformatics.org/ecoinfo/issues/9682003-01-23T23:19:57ZJing Taotao@nceas.ucsb.edu
<p>Access control for eml2 documents is pretty complicated.</p>
<p>In access control submodule, the access rules control the documents access, <br />this can be handled as same as eml beta6. But in additional meta data part, <br />user can specify another access control for a subtree of the document. This <br />control is not base on docid and is base on node id. So we maybe need to <br />change the table structure of xml_access table: adding a new field named <br />nodeid which is foreign key of xml_nodes table.</p>
<p>When we access control, it should be base on sql rather than java code for <br />performance issue.</p> Bug #967 (Resolved): Access control for eml2 documentshttps://projects.ecoinformatics.org/ecoinfo/issues/9672003-01-23T23:19:32ZJing Taotao@nceas.ucsb.edu
<p>Access control for eml2 documents is pretty complicated.</p>
<p>In access control submodule, the access rules control the documents access, <br />this can be handled as same as eml beta6. But in additional meta data part, <br />user can specify another access control for a subtree of the document. This <br />control is not base on docid and is base on node id. So we maybe need to <br />change the table structure of xml_access table: adding a new field named <br />nodeid which is foreign key of xml_nodes table.</p>
<p>When we access control, it should be base on sql rather than java code.</p> Bug #503 (Resolved): Access control problem to a replicated doucmenthttps://projects.ecoinformatics.org/ecoinfo/issues/5032002-05-12T23:24:34ZJing Taotao@nceas.ucsb.edu
<p>If a document was created by user A in NCEAS metacat. Its permission set owner <br />has all permission and public has read permission. In morpho, another user B <br />only can read it.</p>
<p>If this document was replicated to Pine metacat. User B can update it through <br />morpho even user B only has read permission.</p>
<p>It seemed that metacat have some security hole.</p>