Bug #8485
Policies/ACLs do not work (anymore)
| Status: | Resolved | Start date: | 2010-06-24 | |
|---|---|---|---|---|
| Priority: | Should have | Due date: | ||
| Assigned To: | Andreas Förthner | % Done: | 100% |
|
| Category: | Security | |||
| Target version: | TYPO3 Flow Base Distribution - 1.0 alpha 10 | |||
| PHP Version: | Complexity: | |||
| Has patch: | Affected Flow version: |
Description
Attached file ./Configuration/Policy.yaml does not work.
Issue (1)
line 13: keyword before pointcut expression has to read "methods" (with "s"), not "method" as documented in [1]. Keyword was "method" (without "s") before (in an older SVN revision).
Issue (2)
It's unknown how ACLs work now. Previously the syntax in file Policy.yaml was:
acls: ROLENAME: RESOURCE_NAME: GRANT
This causes the following exception:
Notice: Undefined index: entities in /var/www/.../Packages/Framework/FLOW3/Classes/Security/Policy/PolicyService.php line 401
Removing the "acls:"-section from file Policy.yaml "fixes" the problem.
It's assumed that these two issues were introduced by changes in SVN between 23/June/2010 and 24/June/2010.
[1] = http://flow3.typo3.org/documentation/manuals/flow3/flow3.securityframework/
Example 13.10 "Example resources definition..."
Policy.yaml
(715 Bytes)
issue8485-Policy-ACL.jpg (113.9 kB)
Associated revisions
[~TASK] FLOW3 (Security): Changed the example comments in FLOW3's Policy.yaml to reflect the new policy syntax structure. Resolves #8485.
History
#1 Updated by Michael Schams about 5 years ago
- File issue8485-Policy-ACL.jpg added
Hmmm... issue (1) is not reproducible - maybe we can ignore this?
#2 Updated by Andreas Förthner about 5 years ago
- Status changed from New to Resolved
- % Done changed from 0 to 100
Applied in changeset r4627.
#3 Updated by Karsten Dambekalns about 5 years ago
- Category set to Security
- Assigned To set to Andreas Förthner
- Target version set to 1.0 alpha 10