...
| Code Block |
|---|
# create a resources with admin
curl -i -u fedoraAdmin:fedoraAdmin -X PUT http://localhost:8080/rest/test-read-only
curl -i -u fedoraAdmin:fedoraAdmin -X PUT http://localhost:8080/rest/test-read-only/child
# put read-only acl on parent
echo "
@prefix acl: <http://www.w3.org/ns/auth/acl#> .
@prefix foaf: <http://xmlns.com/foaf/0.1/> .
<#restricted> a acl:Authorization ;
acl:agent 'testuser' ;
acl:mode acl:Read;
acl:default <http://localhost:8080/rest/test-read-only> ;
acl:accessTo <http://localhost:8080/rest/test-read-only> .
" | curl -i -u fedoraAdmin:fedoraAdmin -d @- -X PUT -H "Content-Type: text/turtle" http://localhost:8080/rest/test-read-only/fcr:acl
# resources inheriting the default acl should be read-only Verify expected access privileges on target and child - ie read but not write
curl -i -u testuser:testpass -X GET http://localhost:8080/rest/test-read-only/child
# expect 200
curl -i -u testuser:testpass -X PUTPOST http://localhost:8080/rest/test-read-only/new-child
# expect 403 |
- Create resource to protect
- Create ACL on protected resource (read-only)
- Create child of protected resource
- Verify expected access privileges on target and child
| Platform | Tested by | Success? RC-2 | Notes |
|---|---|---|---|
| Mac | Danny Bernstein |  | |
Simple read-write
- Create resource to protect
- Create ACL on protected resource (read/write)
- Create child of protected resource
- Verify expected access privileges on target and child
...