Davrods: Access to all directory levels of the Landing Zones

[mikkonie]

In GitLab by @mkuhring on Jun 1, 2018, 15:39

I think we already had this in the prototype. Basically, it would be nice to access the landing zones from the project top level (were we have landing_zone and sample_data). Currently, there is only the folder of the user in landing_zone, but it appears empty. Only if I specify the complete path of a landing zone, I'm able to reach it. If I'm not conceptually wrong, enabling reading rights on the whole landing zone path would make it possible to mount/connect a project completely (in comparison to connecting to sample_data and each landing zone separately). Or would this be an security issue?

[mikkonie]

This is not done by purpose. Also, most likely it's an issue with iRODS ACL and not DavRods itself. I will look into this, possibly the taskflow transaction is missing an inheritance flag at some point.

[mikkonie]

In GitLab by @mkuhring on Aug 27, 2018, 16:19

Since technically related (I guess), I'm just adding this question here for now: The colleagues from BIH Proteomics were asking whether they could access the data of all their projects with one Webdav mount? So basically just mount https://cubi-omics-davrods-beta.bihealth.org/omicsZone/projects/. Would this be a security issue? Or is it actually possible to show only project paths which you have access to (I guess not)?

[mikkonie]

removed milestone

[mikkonie]

This behaviour is by design and I have not received any other requests to change it in 3 years, so considering this closed :)