I’m finally getting around to testing XACML policies, and for the most part they seem fine on both releases, all servers. However, there is one use case that doesn’t work properly for anonymous users that I wanted to note. I don’t believe that our users ever do this, but it’s worth noting in case they want to. On Floradora an anonymous user can’t see the site, so I can’t tell if this problem exists in the prior release.
Use case (seems like a realistic one): I’ve places a MIMETYPE policy on a collection containing PDFs, under the notion that this might be an alternative to placing an embargo.
What works: when I place the embargo and limit access to myself and then log in with a lower role (Susan Submitter), I get the following display in Chrome and Firefox, which is what I would have expected. (IE has a larger gray area with a tiny icon in the corner):
(Image omitted)
What doesn’t work: when I log out and view the same object as an anonymous user I get various results, all confusing, including a FireFox message “A plugin is needed to display this content”, or a login screen saying “Access denied. You must log in to view this page” within the Summary tab with Chrome and IE.
Placeholder for a known issue.
I’m finally getting around to testing XACML policies, and for the most part they seem fine on both releases, all servers. However, there is one use case that doesn’t work properly for anonymous users that I wanted to note. I don’t believe that our users ever do this, but it’s worth noting in case they want to. On Floradora an anonymous user can’t see the site, so I can’t tell if this problem exists in the prior release.
Use case (seems like a realistic one): I’ve places a MIMETYPE policy on a collection containing PDFs, under the notion that this might be an alternative to placing an embargo.
What works: when I place the embargo and limit access to myself and then log in with a lower role (Susan Submitter), I get the following display in Chrome and Firefox, which is what I would have expected. (IE has a larger gray area with a tiny icon in the corner): (Image omitted)
What doesn’t work: when I log out and view the same object as an anonymous user I get various results, all confusing, including a FireFox message “A plugin is needed to display this content”, or a login screen saying “Access denied. You must log in to view this page” within the Summary tab with Chrome and IE.