topic Restricted access to getTargetAssocsByPropertyValue in Alfresco Forum https://connect.hyland.com/t5/alfresco-forum/restricted-access-to-gettargetassocsbypropertyvalue/m-p/89954#M26891 <P>Hi,<BR /><BR />Using the capitalised NodeService bean, nodeService.getTargetAssocsByPropertyValue can only be run by the <EM>system</EM> user. This is due to the bean <EM>id="NodeService_security"</EM> in <EM>alfresco-repository/src/main/resources/alfresco/public-services-security-context.xml </EM>, in which there is no entry for this method so it defaults to ACL_DENY, preventing access.<BR /><BR />Considering that similar methods (e.g. getChildAssocsByPropertyValue) have entries, it seems as though this might be a mistake/bug, unless there is some specific reason that this method should not be used?<BR /><BR />Does anyone know anything about this?<BR /><BR />Thanks,<BR />Sam Cheshire</P> Wed, 25 Sep 2019 12:08:51 GMT scrasun 2019-09-25T12:08:51Z Restricted access to getTargetAssocsByPropertyValue https://connect.hyland.com/t5/alfresco-forum/restricted-access-to-gettargetassocsbypropertyvalue/m-p/89954#M26891 <P>Hi,<BR /><BR />Using the capitalised NodeService bean, nodeService.getTargetAssocsByPropertyValue can only be run by the <EM>system</EM> user. This is due to the bean <EM>id="NodeService_security"</EM> in <EM>alfresco-repository/src/main/resources/alfresco/public-services-security-context.xml </EM>, in which there is no entry for this method so it defaults to ACL_DENY, preventing access.<BR /><BR />Considering that similar methods (e.g. getChildAssocsByPropertyValue) have entries, it seems as though this might be a mistake/bug, unless there is some specific reason that this method should not be used?<BR /><BR />Does anyone know anything about this?<BR /><BR />Thanks,<BR />Sam Cheshire</P> Wed, 25 Sep 2019 12:08:51 GMT https://connect.hyland.com/t5/alfresco-forum/restricted-access-to-gettargetassocsbypropertyvalue/m-p/89954#M26891 scrasun 2019-09-25T12:08:51Z Re: Restricted access to getTargetAssocsByPropertyValue https://connect.hyland.com/t5/alfresco-forum/restricted-access-to-gettargetassocsbypropertyvalue/m-p/89955#M26892 <P>This is most definitely a bug / massive oversight in development + testing by Alfresco. It is unfortunately not that uncommon, as I have had to report various methods with missing security configurations myself in the past.</P> Wed, 25 Sep 2019 14:13:02 GMT https://connect.hyland.com/t5/alfresco-forum/restricted-access-to-gettargetassocsbypropertyvalue/m-p/89955#M26892 afaust 2019-09-25T14:13:02Z