Changeset 37:34b9d044d0bf in AnnotationManagerN4J for src/main/java/de/mpiwg/itgroup/annotations/restlet/AnnotatorAnnotationsByTags.java
Legend:
- Unmodified
- Added
- Removed
-
src/main/java/de/mpiwg/itgroup/annotations/restlet/AnnotatorAnnotationsByTags.java
r31 r37 18 18 import de.mpiwg.itgroup.annotations.Annotation; 19 19 import de.mpiwg.itgroup.annotations.NS; 20 import de.mpiwg.itgroup.annotations.Person; 20 21 import de.mpiwg.itgroup.annotations.Tag; 21 22 import de.mpiwg.itgroup.annotations.neo4j.AnnotationStore; … … 38 39 setCorsHeaders(); 39 40 41 // do authentication 42 Person authUser = Person.createPersonWithId(this.checkAuthToken(entity)); 43 logger.debug("request authenticated=" + authUser); 44 45 40 46 String jsonId = (String) getRequest().getAttributes().get("id"); 41 47 … … 60 66 61 67 for (Annotation annot : annotations) { 62 JSONObject jo = createAnnotatorJson(annot,false); 68 //check permission 69 if (!annot.isActionAllowed("read", authUser, store)) continue; 70 71 JSONObject jo = createAnnotatorJson(annot,false); 63 72 results.add(jo); 64 73 }
Note: See TracChangeset
for help on using the changeset viewer.