Details
-
Type: Task
-
Status: To-Do (View Workflow)
-
Priority: Major
-
Resolution: Unresolved
-
Affects Version/s: None
-
Fix Version/s: None
-
Labels:None
-
Story Points:3
-
Epic Link:
Description
Situation: There are many issues with the current implementation of checking if a file or folder is public (documented in IGBF-2986).
Task: Improve how BioViz Connect determines if a file or folder is public by checking to see if the URL to the public file works (i.e. returns a 200).
Attachments
Issue Links
- relates to
-
IGBF-2986 Investigate improvement to user permissions endpoint
- Closed
I created this ticket so that we remember to take a closer look at some point in the future.
Unfortunately I think there is a problem that will prevent this implementation from currently working. When a user removes the anonymous user permission from the file, the file should then be rendered private. However, while the user-permissions endpoint will correctly state that the file no longer has anonymous access, the url on dav-anon still works. There appears to be some kind of delay between when anonymous permission is removed and when the dav-anon endpoint becomes unreachable (404).
This would cause a lot of confusion in BioViz Connect if we checked dav-anon for a 200 or 404 to determine if the file was public. For example, a user would remove public access to the file, we would then check to see if the dav-anon URL is reachable (it most likely would be, due to the delay) and we would then show the user that the file was still public. So until this delay is removed, this does not appear to be a working improvement.