-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 By "recursion" I mean that I'm wondering (and this is just off the top of my head) if:
1) Your data objects are guarded by col:policy/POLICY. 2) Upon a request for one of your data objects, the policy engine attempts to retrieve col:policy/POLICY. 3) col:policy/POLICY is guarded by col:policy/POLICY. 4) So the policy engine attempts to retrieve col:policy/POLICY. 5) Uh oh! And by moving the policy outside the repo you broke that loop. According to: https://wiki.duraspace.org/display/FEDORA35/XACML+Policy+Enforcement#XACMLPolicyEnforcement-2.2.2StoringObjectSpecificPoliciesinaPOLICYDatastream object-specific policies are stored in a datastream in that object with an ID of "POLICY". The POLICY datastream of col:policy may be being applied to col:policy. Can you retrieve col:policy/POLICY directly? If you try changing the ID of that datastream to something like "COLLECTIONPOLICY" (or something shorter) does your configuration work? - --- A. Soroka Software & Systems Engineering :: Online Library Environment the University of Virginia Library On Mar 21, 2012, at 4:26 AM, Daniel wrote: > Thank you for your reply! > > As you have suggested I tried to refer from several objects to a policy that > is stored in another non-repository location. The result is, that it worked > fine. > I can't see a recursion problem as the policy in col:policy is internal XML. > What do you mean with "setting the policies so that it can be referenced > from the other objects"? I haven't found anything to this. > > Daniel > > (Sorry if this reply appears twice) > > -- > View this message in context: > http://fedora-commons.1317035.n2.nabble.com/Authentication-Problem-with-External-Referenced-Policies-tp7388893p7391613.html > Sent from the Fedora Commons Users mailing list archive at Nabble.com. > > ------------------------------------------------------------------------------ > This SF email is sponsosred by: > Try Windows Azure free for 90 days Click Here > http://p.sf.net/sfu/sfd2d-msazure > _______________________________________________ > Fedora-commons-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/fedora-commons-users -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org iQEcBAEBAgAGBQJPaiXuAAoJEATpPYSyaoIkFuEH/12SGxneJZdoOc52X5F9Uluv oEx/co6WEDV00g46iUxkep1qYD/e+eBtGcuuS9/4Rb/SWAWuODY3N1WgdnsTJYVp m7GCTOD70U4kGGPrA6gb4Yg9vAHBYIoFfCzoODqpUUmcAp7vzzdsFESOME4sWQV+ eyTX4iBwBcKLbMOouOwsuwj85IyFS4sczQrfm6mcFQh0AZiXCVjGggnDzOJIUJf3 LMiSN9jG5hmE7aQnzvVgtTwgcLCKzjXm3GWKSSWL7N60R37m5df2vXm2gF2dKV3N gp+A1yMszfqjm4xZ4bYXFYh2S4OU9L2HFURsBCstspwQjYGkK0LyLefgz19LcEU= =1wFl -----END PGP SIGNATURE----- ------------------------------------------------------------------------------ This SF email is sponsosred by: Try Windows Azure free for 90 days Click Here http://p.sf.net/sfu/sfd2d-msazure _______________________________________________ Fedora-commons-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fedora-commons-users
