Project

General

Profile

Statistics
| Revision:

metacat @ 7075

Name Size Revision Age Author Comment
  bin 4810 about 15 years daigle moved file from metacat/bin to metacat/src/scri...
  docs 7050 about 12 years ben leinfelder add note about https://redmine.dataone.org/issu...
  lib 7036 about 12 years ben leinfelder throw InvalidToken when there is invalid Subjec...
  src 7075 about 12 years Chris Jones Only allow CNs to call MN.synchronizationFailed...
  test 7040 about 12 years Chris Jones Add testIsEquivIdentityAuthorized() to ensure t...
LICENSE 17.7 KB 666 over 23 years Matt Jones Modified the license and copyright terms for ma...
README 29.9 KB 6553 over 12 years ben leinfelder use 2.0.0 -- stub out the release notes
build.properties 2.76 KB 6555 over 12 years ben leinfelder use 2.0.0
build.sh 1.03 KB 670 over 23 years Matt Jones Updated build files with minor documentation ch...
build.xml 56.2 KB 7011 about 12 years ben leinfelder restore "test" target that I nuked when adding ...
workflowscheduler.build.xml 16.3 KB 6053 about 13 years ben leinfelder remove very old "metacat webservice" code - as ...
  • svn:ignore: build
  • svn:mergeinfo: /branches/D1_0_6_2_BRANCH:6107-6121

Latest revisions

# Date Author Comment
7075 03/16/2012 11:40 AM Chris Jones

Only allow CNs to call MN.synchronizationFailed() by calling isAdminAuthorized(). The pid must also be valid.
7074 03/15/2012 07:50 PM Chris Jones

Modify CNodeService.setReplicationStatus() slightly to restrict MN-based calls to only set the status to COMPLETED. The CNs should be setting failures or invalidations, or the status can remain at QUEUED or REQUESTED, and the MNAuditTask can revisit those replicas as needed.
7073 03/15/2012 07:14 PM Chris Jones

Add a notifyReplicaNodes() method that calls MNStorage.systemMetadataChanged() on MN replica nodes for a given object identifier. This will be called when there are changes to AccessPolicy and rights holder since these are critical access metadata for an MN, but they can only be changed on the CN.
7072 03/15/2012 12:10 PM Chris Jones

Add some debugging statements in isAuthorized().
7071 03/15/2012 12:08 PM Chris Jones

In setReplicationStatus(), first check for a replica target MN subject match with the session subject. If this fails, look to see if CN admin access is allowed. Otherwise throw NotAuthorized. Addresses https://redmine.dataone.org/issues/2494
7070 03/15/2012 11:46 AM ben leinfelder

do not allow "Metacat-conforming" identifiers to be used. "test.1.001" is interpreted as "test.1.1" which renders "test.1.002" unusable unless a traditional Metacat "update" is used for that id/revision which contradicts the DataONE use of Identifiers that have no lexical requirements for revisions.
7069 03/15/2012 08:08 AM ben leinfelder

check for session when checking administrative authorization
7068 03/14/2012 12:02 PM Chris Jones

Remove individual calls to isAdminAuthorized() in favor of the centralized isAuthorized() call that handles it now.
7067 03/14/2012 11:57 AM Chris Jones

Incorporate isAdminAuthorized() into isAuthorized() for blanket CN access to objects.
7066 03/13/2012 04:00 PM ben leinfelder

check for null Session before continuing with setReplicationStatus()
https://redmine.dataone.org/issues/2476#note-3

View all revisions | View revisions

Also available in: Atom