Comments (8)
Would be cool to have this fixed, since it is preventing people to use cool apps like solid-focus, which write directly to the root folder. Just had to give support to someone who was not aware of this bug and wondering why it did not work.
from acl-check.
ok, I don't remember how we triaged this 4 weeks ago because from your description it does sound like a bug. We should have added a note on the issue, sorry about that. Would you like to have a go at fixing this yourself? If not, we'll triage it again on Monday, and then either @jaxoncreed or myself will add it to our queue.
from acl-check.
Sorry, cannot handle this myself at the moment.
from acl-check.
I experienced a similar problem using the nodejs 5.x server
When a mail is specified in an acl file, applications do not have any access mode.
Here is the response received
403: All Required Access Modes Not Granted
The problem can be bypassed by commenting the mail line in the root acl file ("acl:agent mailto:[email protected];").
The problem seems to come from acl-check.js: getTrustedModesForOrigin does not seem to return any results because it somehow fails while trying to get the modes authorized by the mail acl:agent (e. g. mailto:[email protected])
solid:ACL Using ACL https://192.168.1.42:8454/.acl for ./.acl +0ms
solid:ACL 2 direct authentications about https://192.168.1.42:8454/ +16ms
solid:ACL could not fetch owner doc NamedNode { termType: 'NamedNode', value: 'mailto:[email protected]' } Only HTTP(S) protocols are supported +20ms
solid:ACL accessDenied: checking access to https://192.168.1.42:8454/ by https://persocloud.solidweb.org/profile/card#me and origin https://hyuryu.solid.community +477ms
solid:ACL trustedOrigins https://192.168.1.42:8454, modes +3ms
solid:ACL 2 direct authentications about https://192.168.1.42:8454/ +6ms
solid:ACL Agent or group: Ok, its public. +6ms
solid:ACL Mode allowed: http://www.w3.org/ns/auth/acl#Read +3ms
solid:ACL Checking auth https://192.168.1.42:8454/.acl#owner with agent https://persocloud.solidweb.org/profile/card#me +3ms
solid:ACL Agent explicitly authenticated. +4ms
solid:ACL Origin check FAILED. Origin not trusted. +3ms
solid:ACL Check failed: Origin Unauthorized +2ms
solid:ACL accessDenied: modeURIorReasons: ["http://www.w3.org/ns/auth/acl#Read","Origin Unauthorized"] +1ms
solid:ACL checking http://www.w3.org/ns/auth/acl#Control +2ms
solid:ACL MODE REQUIRED NOT ALLOWED: http://www.w3.org/ns/auth/acl#Control Denying with All Required Access Modes Not Granted +1ms
solid:ACL Read access denied to https://persocloud.solidweb.org/profile/card#me: 403 - All Required Access Modes Not Granted +5ms
from acl-check.
cc @jaxoncreed
from acl-check.
This is urgent, it's causing errors in production.
from acl-check.
Oh bummer, from https://github.com/solid/acl-check/commits/master it looks like this was fixed in thie module, but we didn't update NSS to use the latest version? Sorry about that!
from acl-check.
fixed in #1242
from acl-check.
Related Issues (16)
- Deleting a file should require write permission on the container HOT 1
- What is origin and trustedOrigins? HOT 4
- Make which logger to use configurable HOT 1
- Public resources should be available to all origins HOT 1
- Add support for acl:trustedApp
- accessDenied with reason rather than checkAccess
- Refactor getTrustedModesForOrigin
- Cannot read property 'map' of undefined
- File Uploaded using SDK throws 403 HOT 9
- NSS bug #1362 HOT 1
- Parent folder `.acl` is not consulted, even if local `.acl` does not specify permissions HOT 3
- Modes are filtered by origin mode even of no origin HOT 4
- Re-organizing github.com/solid HOT 1
- Get the module in shape for npm
- Find a multilevel logger framework HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from acl-check.