setDomainCreatePermissions() accepts duplicate permission with different grant options

acciente / oacc-core

OACC (Object ACcess Control) is an advanced Java Application Security Framework

http://oaccframework.org/

Apache License 2.0

107 stars 23 forks source link

setDomainCreatePermissions() accepts duplicate permission with different grant options #15

Closed fspinnenhirn closed 9 years ago

fspinnenhirn commented 9 years ago

The setDomainCreatePermissions method is not validating the set of requested permissions and currently accept duplicate permissions that differ only in their grant option.

This would cause a SQLException to be thrown when attempting to add those permissions.