Menu
▾
▴
[Treebase-guts] SF.net SVN: treebase:[445] trunk/treebase-web/src/main/java/org/cipres/ treebase/web/controllers/SearchSummaryController.java
|
From: <rv...@us...> - 2010-01-15 13:56:35
|
Revision: 445
http://treebase.svn.sourceforge.net/treebase/?rev=445&view=rev
Author: rvos
Date: 2010-01-15 13:56:27 +0000 (Fri, 15 Jan 2010)
Log Message:
-----------
Now a priori explicitly denies access to unpublished studies.
Modified Paths:
--------------
trunk/treebase-web/src/main/java/org/cipres/treebase/web/controllers/SearchSummaryController.java
Modified: trunk/treebase-web/src/main/java/org/cipres/treebase/web/controllers/SearchSummaryController.java
===================================================================
--- trunk/treebase-web/src/main/java/org/cipres/treebase/web/controllers/SearchSummaryController.java 2010-01-15 13:32:07 UTC (rev 444)
+++ trunk/treebase-web/src/main/java/org/cipres/treebase/web/controllers/SearchSummaryController.java 2010-01-15 13:56:27 UTC (rev 445)
@@ -91,15 +91,13 @@
theStudy = getStudyService().findByID(studyID);
if (theStudy == null) { throw new UnknownStudyError(); }
LOGGER.debug("formBackingObject found study " + theStudy);
- /*
if ( ! theStudy.isPublished() ) {
- String hashedId = theStudy.getNamespacedGUID().getHashedIDString();
- String xAccessCode = request.getParameter(Constants.X_ACCESS_CODE);
- if ( ! hashedId.equals(xAccessCode) ) {
- throw new RestrictedStudyError();
- }
+ // we assume access is denied, unless specifically granted!
+ setAuthorizationChecked(false);
}
- */
+ else {
+ setAuthorizationChecked(true);
+ }
}
theTree = null;
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
