VERSION: 10.5
Situation:
• Intranet with User credentials to “See” contents in the whole environment asks Content Server (CS) for a specific list of documents to display in the intranet
• User can see the entire returned list and can click a specific document in order to open the overview page within CS
• Therefore User will be redirected to where user sees the ‘same’ document list (within the parent (virtual) folder)*
• User can choose to open, edit or perform other actions on selected document
• CS will check the credentials of User for desired action and acts accordingly
Questions:
Intranet requests CS through the API REST interface with admin-like credentials for a list of documents to display in the Intranet. What happens if:
1. User clicks on a selected document in the intranet interface and finds himself ‘redirected’ in the CS interface (no action on the document). With which credentials is User in CS (coming from the same session under which the Intranet requested CS with admin-like credentials)?
2. What happens if user was already logged into CS before above mentioned user action. What happens if user was not logged into CS?
3. What happens if a direct action on the requested document is carried out: eg action from Intranet: open the document
4. Is it possible to make the REST call with the user that is already logged in into Windows
