From e0162efd4bc5320591854c137d1403083e4a8618 Mon Sep 17 00:00:00 2001
From: Chris McDonough <chrism@agendaless.com>
Date: Thu, 19 Nov 2009 15:05:32 +0000
Subject: - The ACL authorization policy debugging output when  
 ``debug_authorization`` consule debugging output was turned on   wasn't as
 clear as it could have been when a view execution was   denied due to an
 authorization failure resulting from the set of   principals passed never
 having matched any ACE in any ACL in the   lineage.  Now in this case, we
 report ``<default deny>`` as the ACE   value and either the root ACL or ``<No
 ACL found on any object in   model lineage>`` if no ACL was found.

---
 CHANGES.txt | 12 ++++++++++++
 1 file changed, 12 insertions(+)

(limited to 'CHANGES.txt')

diff --git a/CHANGES.txt b/CHANGES.txt
index 2de872afe..496a95ee8 100644
--- a/CHANGES.txt
+++ b/CHANGES.txt
@@ -1,6 +1,18 @@
 Next release
 ============
 
+Bug Fixes
+----------
+
+- The ACL authorization policy debugging output when
+  ``debug_authorization`` consule debugging output was turned on
+  wasn't as clear as it could have been when a view execution was
+  denied due to an authorization failure resulting from the set of
+  principals passed never having matched any ACE in any ACL in the
+  lineage.  Now in this case, we report ``<default deny>`` as the ACE
+  value and either the root ACL or ``<No ACL found on any object in
+  model lineage>`` if no ACL was found.
+
 Internals
 ---------
 
-- 
cgit v1.2.3