/Can you retrieve col:policy/POLICY directly? If you try changing the ID of that datastream to something like "COLLECTIONPOLICY" (or something shorter) does your configuration work?/
It is getting interesting now. I tested the following scenarios: a) The policy is stored in col:policy/POLICY and refered as external reference by object:test/POLICY -> From now on authorization is denied to open object:test b) The policy is stored outside the repository and refered as external reference by object:test/POLICY -> works c) The policy is stored in other:pid/POLICY and refered as external reference by object:test/POLICY -> From now on authorization is denied to open object:test d) The policy is stored in other:pid/OTHER and refered as external reference by object:test/POLICY -> From now on authorization is denied to open object:test So case d) shows that the problem is not that the policy is guarding the source object in other:pid/OTHER If I put the link to other:pid/OTHER (SERVER:PORT/FEDORA/PATH/PID) in a browser, an authorization is requested. I guess, this is the problem but I have no idea why this authorization is requested and how to turn it off (or how to authorize this request). I tried to find a repository wide XACML policy that may be responsible but I haven't found one. Do you have further suggestions? Thank you again very much! -- View this message in context: http://fedora-commons.1317035.n2.nabble.com/Authentication-Problem-with-External-Referenced-Policies-tp7388893p7394868.html Sent from the Fedora Commons Users mailing list archive at Nabble.com. ------------------------------------------------------------------------------ This SF email is sponsosred by: Try Windows Azure free for 90 days Click Here http://p.sf.net/sfu/sfd2d-msazure _______________________________________________ Fedora-commons-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fedora-commons-users
