feat: Introduce a new tool to check permissions on a node

[dgriffon]

Description

This tool helps to understand where a given permission is coming from when checked on a given node.

How it works

Input:

principal: username or group, group is identified by the g: prefix
site: global or from a given site
node path: path of the node to check
workspace: live/default
permission: name of the permission to check, leave empty to get all permissions for the given principal/node couple.

Output:

if a permission is provided, the result of a check result of the permission against the node for the provided user.
If the permission is granted, the node / role that bring the permission to the user
If the permission is granted, and the role not found, the tool needs to be improved to catch where the permission is coming from.
A way is to identify the role/node is to put a breakpoint in this method:
https://github.com/Jahia/jahia-private/blob/4a2f6dffe558040058db84b427ae6cef4f2ada0e/core/src/main/java/org/jahia/utils/security/AccessManagerUtils.java#L428
in the return true statements.

The tool display also all permissions granted/deny to the provided node and user/group.

Tests

• I've provided Unit and/or Integration Tests

[github-actions]

🦜 Chachalog

tools minor

• Introduce a new tool to check permissions on a node (feat: Introduce a new tool to check permissions on a node #314)

Create a new entry online or run npx chachalog@0.5.1 prompt to create a new entry locally.

[jahia-sonarqube]

Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarQube