Project

General

Profile

Actions
Copy link

task #8424

open

evaluate publish flags in the full derivative path

Added by Andreas Kohlbecker over 3 years ago. Updated almost 2 years ago.

Status:
New
Priority:
New
Assignee:
Andreas Kohlbecker
Category:
cdmlib-remote
Target version:
Unassigned CDM tickets
Start date:
Due date:
% Done:

0%

Estimated time:
Severity:
normal
Tags:
specimen permission

Description

eu.etaxonomy.cdm.remote.controller.OccurrenceController.doGetOccurencesDTO(@PathVariable(value="uuid") UUID uuid, HttpServletRequest request, HttpServletResponse response)

In doGetFieldUnitDTO maybe also in other methods, the publish flag is checked only for the derivative for which the uuid is passed to the method. Originals are not checked though!

All DerivedUnits need to be checked though. The actual processing of the DerivedUnits takes place in the OccurrenceServiceImpl, therefore checking the publish flag must be done there.

During a call with Katja we discussed as solution to let the service check all the publish flags. In case one element in the derivation path is protected the service will throw an exception (UnpublishedEntityAccessException) which is caught by the controller to respond to the client in an appropriate way. By this the we can avoid exposing protected data from the FieldUnit which is included into the titleCache of derivatives.

Related issues

Related to EDIT - task #3560: Withheld unpublished taxa from webservice used in E+M dataportalResolvedAndreas Müller

Actions
Related to EDIT - bug #9559: OccurrenceServiceImpl.findRootUnitDTOs() and related methods suppress unpublished unitsNewAndreas Kohlbecker

Actions
Related to EDIT - feature request #10206: Add publish flag to description baseIn ProgressAndreas Müller

Actions
Copied from EDIT - task #8414: occurrence controller code cleaning and harmonizationClosedAndreas Kohlbecker

Actions
Actions
Copy link
 #1

Updated by Andreas Kohlbecker over 3 years ago

  • Copied from task #8414: occurrence controller code cleaning and harmonization added
Actions
Copy link
 #2

Updated by Andreas Müller over 3 years ago

As far as I know the SpecimenOrObservation publish flag is not evaluated by webservices at all, yet (or only in very few cases). So this ticket should better be part of be transformed into a ticket which generally is about implementing publish flag evaluation for SpecimenOrObservation similar to the TaxonBase publish flag evaluation.

Actions
Copy link
 #3

Updated by Andreas Müller over 3 years ago

  • Related to task #3560: Withheld unpublished taxa from webservice used in E+M dataportal added
Actions
Copy link
 #4

Updated by Andreas Müller almost 2 years ago

  • Related to bug #9559: OccurrenceServiceImpl.findRootUnitDTOs() and related methods suppress unpublished units added
Actions
Copy link
 #5

Updated by Andreas Müller almost 2 years ago

  • Tags changed from permission to permission, specimen
Actions
Copy link
 #7

Updated by Andreas Müller about 2 months ago

Actions
Copy link

Also available in: Atom PDF