add owner permission checking to hasViewerAccessToRecord in CloudStorageImpl of Azure CSP

aa001dce · Yauheni Lesnikau · d6d39c93 · aa001dce
Commit aa001dce authored 2 years ago by Yauheni Lesnikau
--- a/provider/storage-azure/src/main/java/org/opengroup/osdu/storage/provider/azure/CloudStorageImpl.java
+++ b/provider/storage-azure/src/main/java/org/opengroup/osdu/storage/provider/azure/CloudStorageImpl.java
@@ -240,8 +240,11 @@ public class CloudStorageImpl implements ICloudStorage {
                });
        boolean isEntitledForViewing = dataEntitlementsService.hasAccessToData(headers,
                new HashSet<>(Arrays.asList(acls)));
-        boolean isRecordOwner = record.getUser().equalsIgnoreCase(headers.getUserEmail());
-        return isEntitledForViewing || isRecordOwner;
+        boolean isRecordCreator = record.getUser().equalsIgnoreCase(headers.getUserEmail());
+        if (!isEntitledForViewing && !isRecordCreator) {
+            return hasOwnerAccessToRecord(record);
+        }
+        return true;
    }

    private boolean hasOwnerAccessToRecord(RecordMetadata record)