[Bug 1132] - fix access control rule ambiguities
bugzilla-daemon@ecoinformatics.org
bugzilla-daemon at ecoinformatics.org
Thu Jul 15 11:23:15 PDT 2004
http://bugzilla.ecoinformatics.org/show_bug.cgi?id=1132
------- Additional Comments From dblankman at lternet.edu 2004-07-15 11:23 -------
It seems to me that read access to <inline> without read access to general
metadata should not be allowed, Of what use is the ability to download data
without being able to access (read) the metadata. The same thing is true for
write aceess to <inline>. While it is possble that a change in data might not
require a change in the metadata, how could someone make a change to an embedded
portion or the metadata in isolation, that is, without having write access to
the overall eml document.
I would suggest that <inline> could be more retrictive than other parts of the
metadata, but not the reverse. That is, it is certainly possible that someone
would want to grant broader access to overall metadata than to the data itself.
More information about the Eml-dev
mailing list