Michiel Meeuwissen wrote: > [EMAIL PROTECTED] wrote: > >>I can't delete a node because I have no 'write' permission, in spite of >>the fact that I have all the necessary 'delete' permissions. >>When trying to delete the node and its relations, I get the following >>exception: >> org.mmbase.security.SecurityException: Operation 'write' on 253 was NOT >> permitted to m1 at >> org.mmbase.security.implementation.context.ContextAuthorization.assert(Unknown >> Source) at org.mmbase.bridge.implementation.BasicCloud.assert(Unknown Source) >> at org.mmbase.bridge.implementation.BasicNode.edit(Unknown Source) >> at org.mmbase.bridge.implementation.BasicNode.deleteAliases(Unknown Source) >> at org.mmbase.bridge.implementation.BasicNode.delete(Unknown Source) >> >>Following the stacktrace, I find this line in BasicCloud.deleteAliases(): >> edit(ACTION_EDIT); >>Shouldn't this be ACTION_DELETE? >> >>Can someone please fix this in the 1.5 branch? > > > This was fixed in 1.6, and it revealed another bug, proving that you must > carefull with these kind of things. > > deleting aliases in my opinion is an edit action, but of course not when > delete the node itself. IIRC the check must be moved from deleteAliases to > deleteAlias. > > Probably the BasicNode.java from 1.6 can be put in 1.5.
Can this be done without any problems? Gerard
