Opened 16 years ago

Closed 16 years ago

#1002 closed defect (fixed)

Possible PermissionDeniedException when listing rawbioassay through webservices

Reported by: Nicklas Nordborg Owned by: Nicklas Nordborg
Priority: minor Milestone: BASE 2.6.3
Component: webservices Version:
Keywords: Cc:


This happens if one of the raw bioassays the user has access to is linked to an array design that the user doesn't has access to. Here is part of the stacktrace from the client side:

org.apache.axis2.AxisFault: Permission denied: Not allowed to read Array design[id=3; name=HG-U133A.cdf]
at org.apache.axis2.util.Utils.getInboundFaultFromMessageContext(
at org.apache.axis2.description.OutInAxisOperationClient.handleResponse(
at org.apache.axis2.description.OutInAxisOperationClient.send(
at org.apache.axis2.description.OutInAxisOperationClient.executeImpl(
at org.apache.axis2.client.OperationClient.execute(
at org.apache.axis2.client.ServiceClient.sendReceive(
at org.apache.axis2.client.ServiceClient.sendReceive(
at org.apache.axis2.rpc.client.RPCServiceClient.invokeBlocking(

Change History (2)

comment:1 by Nicklas Nordborg, 16 years ago

Status: newassigned

The problem is the RawBioAssay.toTransferable() method, which just loads the array design with checking for permissions. It seems like there are similiar issues with other items. I think we need to go through all toTransferable() methods and implement error handling.

comment:2 by Nicklas Nordborg, 16 years ago

Resolution: fixed
Status: assignedclosed

(In [4245]) Fixes #1002: Possible PermissionDeniedException when listing rawbioassay through webservices

Note: See TracTickets for help on using tickets.