Bug #1072 (closed)
Opened 16 years ago
Closed 14 years ago
loadContainerHierarchy - ome.conditions.SecurityViolation: Cannot read ome.model.containers.Dataset
| Reported by: | atarkowska | Owned by: | jamoore |
|---|---|---|---|
| Priority: | minor | Cc: | jburel |
| Sprint: | n.a. | ||
| Total Remaining Time: | n.a. |
Description
loadContainerHierarchy cannot load hierarchy when project permissions is rwr--- and contains dataset with permissions (rw----).
I am not sure about different use cases.
Change History (6)
comment:1 Changed 16 years ago by atarkowska
comment:2 Changed 16 years ago by jmoore
- Milestone changed from 3.0-Beta3.1 to 3.0-Beta4
- Status changed from new to assigned
- Type changed from User Story to defect
No, it can't. The security system currently prevents the dataset's permissions from being removed once it has been linked to the project, but currently there is no check to make sure that a user is not "corrupting" someone else's data.
This is a related use-case to that discussed during:
http://cvs.openmicroscopy.org.uk/tiki/tiki-index.php?page=ConferenceCall%202008-08-26-Permissions
in which the server should prevent users from linking data over the group boundary. I'm pushing this to milestone:3.0-Beta4 because it's not something we can correct simply.
comment:3 Changed 15 years ago by jmoore
- Cc jburel added
Do we try to do anything else on this for the moment, or push?
comment:4 Changed 15 years ago by atarkowska
- Milestone changed from OMERO-Beta4 to OMERO-Beta4.1
Beta 4.0 supports only private data and I think we can push it to the next release.
comment:5 Changed 15 years ago by atarkowska
related ticket #1171
comment:6 Changed 14 years ago by jmoore
- Milestone changed from Unscheduled to OMERO-Beta4.2
- Resolution set to duplicate
- Status changed from assigned to closed
Not allowing links over group boundaries is the subject of #1434, closing.
r2788 https://trac.openmicroscopy.org.uk/omero/browser/trunk/components/tools/OmeroPy/test/integration/tickets2000.py#L195