Merged 5.2.0 (5.2.0) to HEAD (5.2)

133843 rmunteanu: REPO-1746: Merge fixes for 5.2 GA issues to 5.2.0 branch Merged 5.2.N (5.2.1) to 5.2.0 (5.2.0) 133423 jvonka: REPPO-1579: V1 REST API - create person fix - expect 403 instead of 409, if a non-admin tries to create a person that already exists - REPO-892 git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@134182 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
2025-08-14 17:58:59 +00:00 · 2017-01-11 10:34:03 +00:00
parent 342fe6f26c
commit 75c6283fb0
2 changed files with 19 additions and 5 deletions
--- a/source/java/org/alfresco/rest/api/impl/PeopleImpl.java
+++ b/source/java/org/alfresco/rest/api/impl/PeopleImpl.java
@@ -428,7 +428,13 @@ public class PeopleImpl implements People
 	{
 		validateCreatePersonData(person);

-		// TODO: check, is this transaction safe?
+        if (! isAdminAuthority())
+        {
+            // note: do an explict check for admin here (since personExists does not throw 403 unlike createPerson,
+            // hence next block would cause 409 to be returned)
+            throw new PermissionDeniedException();
+        }
+
 		// Unfortunately PersonService.createPerson(...) only throws an AlfrescoRuntimeException
 		// rather than a more specific exception and does not use a message ID either, so there's
 		// no sensible way to know that it was thrown due to the user already existing - hence this check here.