projects / lgpl / argeo-commons.git / blobdiff
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Improve Jackrabbit security
[lgpl/argeo-commons.git] / security / runtime / org.argeo.security.jackrabbit / src / main / java / org / argeo / security / jackrabbit / ArgeoSecurityManager.java
diff --git a/security/runtime/org.argeo.security.jackrabbit/src/main/java/org/argeo/security/jackrabbit/ArgeoSecurityManager.java b/security/runtime/org.argeo.security.jackrabbit/src/main/java/org/argeo/security/jackrabbit/ArgeoSecurityManager.java
index e5b83e3169d2afa3df0f675190d16fe69123d345..5612b638868cd462cc310f8b25dd7812ea196427 100644 (file)
--- a/security/runtime/org.argeo.security.jackrabbit/src/main/java/org/argeo/security/jackrabbit/ArgeoSecurityManager.java
+++ b/security/runtime/org.argeo.security.jackrabbit/src/main/java/org/argeo/security/jackrabbit/ArgeoSecurityManager.java
@@ -112,18 +112,22 @@ public class ArgeoSecurityManager extends DefaultSecurityManager {
 
                public boolean grants(Set<Principal> principals, String workspaceName)
                                throws RepositoryException {
+                       // everybody has access to all workspaces
+                       // TODO: implements finer access to workspaces
+                       return true;
+
                        // anonymous has access to the default workspace (required for
                        // remoting which does a default login when initializing the
                        // repository)
-                       Boolean anonymous = false;
-                       for (Principal principal : principals)
-                               if (principal instanceof AnonymousPrincipal)
-                                       anonymous = true;
-
-                       if (anonymous && workspaceName.equals(defaultWorkspace))
-                               return true;
-                       else
-                               return wam.grants(principals, workspaceName);
+                       // Boolean anonymous = false;
+                       // for (Principal principal : principals)
+                       // if (principal instanceof AnonymousPrincipal)
+                       // anonymous = true;
+                       //
+                       // if (anonymous && workspaceName.equals(defaultWorkspace))
+                       // return true;
+                       // else
+                       // return wam.grants(principals, workspaceName);
                }
        }
 
Argeo Commons - Lightweight integration framework in pure Java/OSGi