Please sign in to comment.
#1084 Prevent that an admin user can share a collection to it's owner
- Before: Code checked that a collection cannot be shared to the user who is sharing the collection. In case of an admin user sharing an other user's collection it was still possible to share a collection to its owner. As a result the owner's admin grant for the collection was overwritten in Jena with an edit grant and this edit grant could be removed by revoking the sharing. This created owners without grants to their own collections. - Now: Code checks that a collection cannot be shared to it's owner.
- Loading branch information...
Showing with 10 additions and 4 deletions.