[Exist-commits] eXist-1.0/src/org/exist/http/webdav/methods Get.java,1.1,1.2

[Wolfgang M. M. <wol...@us...>]

Update of /cvsroot/exist/eXist-1.0/src/org/exist/http/webdav/methods
In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv15785/src/org/exist/http/webdav/methods

Modified Files:
	Get.java 
Log Message:
Fixed resource read/write permissions check.

Index: Get.java
===================================================================
RCS file: /cvsroot/exist/eXist-1.0/src/org/exist/http/webdav/methods/Get.java,v
retrieving revision 1.1
retrieving revision 1.2
diff -C2 -d -r1.1 -r1.2
*** Get.java	23 Apr 2004 13:14:02 -0000	1.1
--- Get.java	2 Jul 2004 16:53:55 -0000	1.2
***************
*** 36,39 ****
--- 36,40 ----
  import org.exist.http.webdav.WebDAV;
  import org.exist.http.webdav.WebDAVMethod;
+ import org.exist.security.Permission;
  import org.exist.security.User;
  import org.exist.storage.BrokerPool;
***************
*** 64,67 ****
--- 65,72 ----
  			return;
  		}
+ 		if(!resource.getPermissions().validate(user, Permission.READ)) {
+ 		    response.sendError(HttpServletResponse.SC_FORBIDDEN, "Not allowed to read resource");
+ 		    return;
+ 		}
  		String contentType;
  		if(resource.getResourceType() == DocumentImpl.XML_FILE)