AnsweredAssumed Answered

PermissionService: hasPermission for other user than current

Question asked by jlnr on Jan 29, 2008
Latest reply on Feb 5, 2008 by hbf

I am looking for something similar to what PermissionService#hasPermission does, but not for the currently logged-in user. Basically, I would like to traverse the whole repository (as the administrator) and keep track of what user can access what documents. Given the public API I can only see two ways;

1. Log in as each user and traverse what's possible, which has the disadvantage that it needs each user's password in plain text.

2. Parse the AccessPermission objects myself to determine who has access, which is somewhat fragile (but is what I'm doing right now).

As far as I can see, I would need to extend/replace the PermissionServiceImpl to avoid the dangerous code duplication of 2.—or am I missing a straightforward way?