From ef7472507064725f7d1ac16e6b9ccdfa2f9fadea Mon Sep 17 00:00:00 2001
From: coulbeck <coulbeck@localhost>
Date: Fri, 23 Feb 2007 20:11:10 +0000
Subject: [PATCH] This change prepares the unit tests for when the ACI handler will get enabled by default.  Most of the failing tests are fixed by adding bypass-acl privilege to the entries of the users the failing tests bind as.

---
 opends/src/server/org/opends/server/core/SearchOperation.java |   34 +++++++++++++++++-----------------
 1 files changed, 17 insertions(+), 17 deletions(-)

diff --git a/opends/src/server/org/opends/server/core/SearchOperation.java b/opends/src/server/org/opends/server/core/SearchOperation.java
index 15a319a..b950974 100644
--- a/opends/src/server/org/opends/server/core/SearchOperation.java
+++ b/opends/src/server/org/opends/server/core/SearchOperation.java
@@ -1652,23 +1652,6 @@
         break searchProcessing;
       }
 
-      // Check to see if the client has permission to perform the
-      // search.
-
-      // FIXME: for now assume that this will check all permission
-      // pertinent to the operation. This includes proxy authorization
-      // and any other controls specified.
-      if (AccessControlConfigManager.getInstance()
-          .getAccessControlHandler().isAllowed(this) == false) {
-        setResultCode(ResultCode.INSUFFICIENT_ACCESS_RIGHTS);
-
-        int msgID = MSGID_SEARCH_AUTHZ_INSUFFICIENT_ACCESS_RIGHTS;
-        appendErrorMessage(getMessage(msgID, String.valueOf(baseDN)));
-
-        skipPostOperation = true;
-        break searchProcessing;
-      }
-
       // Check to see if there are any controls in the request.  If so, then
       // see if there is any special processing required.
       boolean       processSearch    = true;
@@ -1952,6 +1935,23 @@
       }
 
 
+      // Check to see if the client has permission to perform the
+      // search.
+
+      // FIXME: for now assume that this will check all permission
+      // pertinent to the operation. This includes proxy authorization
+      // and any other controls specified.
+      if (AccessControlConfigManager.getInstance()
+          .getAccessControlHandler().isAllowed(this) == false) {
+        setResultCode(ResultCode.INSUFFICIENT_ACCESS_RIGHTS);
+
+        int msgID = MSGID_SEARCH_AUTHZ_INSUFFICIENT_ACCESS_RIGHTS;
+        appendErrorMessage(getMessage(msgID, String.valueOf(baseDN)));
+
+        skipPostOperation = true;
+        break searchProcessing;
+      }
+
       // Check for and handle a request to cancel this operation.
       if (cancelRequest != null)
       {

--
Gitblit v1.10.0