|
I have to add that Java client does not allow deleting or modifying admin values for this handle.
Ev From: handle-info-bounces@cnri.reston.va.us <handle-info-bounces@cnri.reston.va.us> on behalf of Evguenia Krylova <evguenia.krylova@wisc.edu>
Sent: Friday, February 19, 2016 4:48 PM To: handle-info@cnri.reston.va.us Subject: [Handle-info] CNRI Web Admin application: handle permissions are not observed I am testing CNRI Web Admin tool and have come across something that does not make sense to me.
I a handle 1712/evtest that can be managed by 200:1712/dladmins_test handle with the following permissions: 011001110011. These are listed as read, add, modify, delete value, list handle and add admin.
Index 200 contains vlist with 200:1712/dladmins_test handle in it (see the data below). The permissions do not include modify or delete admin, yet when authenticated as 310:1712/batchuser, I can modify and delete admin values and save the handle.
This does not look right to me.
Ev
1712/dladmins_test: ------------------
1712/batchuser: --------------
1712/evtest: ----------------------- {
"responseCode": 1,
"handle": "1712/evtest",
"values": [
{
"index": 100,
"type": "HS_ADMIN",
"data": {
"format": "admin",
"value": {
"handle": "0.NA/1712",
"index": 200,
"permissions": "111111111111"
}
},
"ttl": 86400,
"timestamp": "2016-02-19T22:05:11Z"
},
{
"index": 2,
"type": "NAME",
"data": {
"format": "string",
"value": "test handle for Ev"
},
"ttl": 86400,
"timestamp": "2016-02-19T22:23:59Z"
},
{
"index": 102,
"type": "HS_ADMIN",
"data": {
"format": "admin",
"value": {
"handle": "1712/dladmins_test",
"index": 200,
"permissions": "011001110011"
}
},
"ttl": 86400,
"timestamp": "2016-02-19T22:28:55Z"
}
]
}
|
_______________________________________________ Handle-Info mailing list Handle-Info@cnri.reston.va.us http://www.handle.net/mailman/listinfo/handle-info