Warning: Can't synchronize with repository "(default)" (/home/git/ome.git does not appear to be a Git repository.). Look in the Trac log for more information.
Notice: In order to edit this ticket you need to be either: a Product Owner, The owner or the reporter of the ticket, or, in case of a Task not yet assigned, a team_member"

Bug #1072 (closed)

Opened 16 years ago

Closed 14 years ago

loadContainerHierarchy - ome.conditions.SecurityViolation: Cannot read ome.model.containers.Dataset

Reported by: atarkowska Owned by: jamoore
Priority: minor Cc: jburel
Sprint: n.a.
Total Remaining Time: n.a.

Description

loadContainerHierarchy cannot load hierarchy when project permissions is rwr--- and contains dataset with permissions (rw----).

I am not sure about different use cases.

Change History (6)

comment:2 Changed 16 years ago by jmoore

  • Milestone changed from 3.0-Beta3.1 to 3.0-Beta4
  • Status changed from new to assigned
  • Type changed from User Story to defect

No, it can't. The security system currently prevents the dataset's permissions from being removed once it has been linked to the project, but currently there is no check to make sure that a user is not "corrupting" someone else's data.

This is a related use-case to that discussed during:

http://cvs.openmicroscopy.org.uk/tiki/tiki-index.php?page=ConferenceCall%202008-08-26-Permissions

in which the server should prevent users from linking data over the group boundary. I'm pushing this to milestone:3.0-Beta4 because it's not something we can correct simply.

comment:3 Changed 15 years ago by jmoore

  • Cc jburel added

Do we try to do anything else on this for the moment, or push?

comment:4 Changed 15 years ago by atarkowska

  • Milestone changed from OMERO-Beta4 to OMERO-Beta4.1

Beta 4.0 supports only private data and I think we can push it to the next release.

comment:5 Changed 15 years ago by atarkowska

related ticket #1171

comment:6 Changed 14 years ago by jmoore

  • Milestone changed from Unscheduled to OMERO-Beta4.2
  • Resolution set to duplicate
  • Status changed from assigned to closed

Not allowing links over group boundaries is the subject of #1434, closing.

Note: See TracTickets for help on using tickets. You may also have a look at Agilo extensions to the ticket.

1.3.13-PRO © 2008-2011 Agilo Software all rights reserved (this page was served in: 0.68947 sec.)

We're Hiring!