Uploaded image for project: 'IoTivity'
  1. IoTivity
  2. IOT-1595

ACL Union behavior to align with upcoming OCF 1.0 behavior

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Undecided
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: IoTivity 1.2.0
    • Component/s: SDK
    • Labels:
      None
    • Found in Version/s:
      1.2-rel
    • Operating System:
      Ubuntu
    • Issue Severity:
      Critical
    • Reproducibility:
      Always (100%)

      Description

      The current Policy Engine logic is to assess the permissions on the first matching ACE for a request (matched via Subject and Resource), and respond to the request (Grant or Deny) based on that ACE.

      The new OCF 1.0 behavior specifies that if any ACE allows a request, it should be Granted (so-called "Union" behavior).

      To allow consistency we must fix this in 1.2.1.

        Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

          Activity

            People

            • Assignee:
              randeep01 Randeep Singh
              Reporter:
              nathanheldtsheller Nathan Heldt-Sheller
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: