Context Navigation

Changeset 5840 for DASISH

Timestamp:

11/20/14 13:47:17 (10 years ago)

Author:

olhsha@mpi.nl

Message:

more tests, error message is beter

Location:

Files:

r5836	r5840
72	72	be ignored.
73	73
	74	November 20, 2014. A new feature: an "all" access mode is added. The user with this permission have
	75	the same rights as the owner, that it he can update permissions on the annotation
	76	and delete it at all. Also, the pieces of code handling permissions, have been refactored.

-                      r5836
+                      r5840
 Placing tarball: take the tar-ball of the new  version 1.6-basic, and follow the
 standard MPI deployment procedure.
+Placing tarball: take the tar-ball of the new  version 1.6.1-shibboleth, and follow the
+standard MPI deployment procedure.
+A new feature: a user with "write" access can update
+annotation as a whole, but if he also sends permission updates they will be
+ignored.
+Update the dasish annotation database with:
+INSERT INTO access(access_mode) VALUES ('all');
+A new feature: an "all" access mode is added. The user with this permission have
+the same rights as the owner, that it he can update permissions on the annotation
+and delete it at all.

r5836	r5840
5	5	<groupId>eu.dasish.annotation</groupId>
6	6	<artifactId>annotator-backend</artifactId>
7		<version>1.6-shibboleth</version>
	7	<version>1.6.1-shibboleth</version>
8	8	<packaging>war</packaging>
9	9	<name>annotator-backend Jersey Webapp</name>

r5836	r5840
49	49
50	50	public String FORBIDDEN_RESOURCE_ACTION(String identifier, String resource, String action) {
51		return " The logged-in principal cannot ~~" + action + "~~ the " + resource + " with the identifier " + identifier;
	51	return " The logged-in principal cannot perform action that falls under access mode'" + action + "', with the " + resource + " with the identifier " + identifier;
52	52	}
53	53

-                      r5774
+                      r5840
                 <username>anonymous</username>
             </fallback>
             <sso action="lI">https://lux17.mpi.nl/Shibboleth.sso/Login</sso>
             <slo action="lO">https://lux17.mpi.nl/Shibboleth.sso/Logout</slo>
+            <sso action="lI">https://lux16.mpi.nl/Shibboleth.sso/Login</sso>
+            <slo action="lO">https://lux16.mpi.nl/Shibboleth.sso/Logout</slo>
         </authentication>

-                      r5838
+                      r5840
     <context-param>
         <param-name>eu.dasish.annotation.backend.isShibbolethSession</param-name>
         <param-value>false</param-value>
+        <param-value>true</param-value>
     </context-param>
     <context-param>
 …
     <context-param>
         <param-name>eu.dasish.annotation.backend.logout.shibboleth</param-name>
         <param-value>https://lux17.mpi.nl/Shibboleth.sso/Logout</param-value>
+        <param-value>https://lux16.mpi.nl/Shibboleth.sso/Logout</param-value>
     </context-param>
 …
     <!-- Spring security -->
       <filter>
+     <!-- <filter>
         <filter-name>springSecurityFilterChain</filter-name>
         <filter-class>org.springframework.web.filter.DelegatingFilterProxy</filter-class>
 …
         <filter-name>springSecurityFilterChain</filter-name>
         <url-pattern>/*</url-pattern>
     </filter-mapping>
+    </filter-mapping> -->
     <!--  Shibboleth filter -->
   <!--  <filter>
+   <filter>
         <filter-name>AAIFilter</filter-name>
         <filter-class>de.mpg.aai.shhaa.AuthFilter</filter-class>
 …
         <filter-name>AAIFilter</filter-name>
         <url-pattern>/*</url-pattern>
     </filter-mapping> -->
+    </filter-mapping>
   </web-app>

Note: See TracChangeset for help on using the changeset viewer.