From 61afec8de05cacb6134749bbfd4f92ac40426b17 Mon Sep 17 00:00:00 2001
From: j2blake <j2blake@440791e1-c2bf-4c1e-ad7c-caf3f8b0ebe8>
Date: Wed, 22 Jun 2011 15:48:10 +0000
Subject: [PATCH] Test for self-editing by Identifiers, not by role level.

---
 .../auth/policy/DisplayRestrictedDataToSelfPolicy.java      | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/webapp/src/edu/cornell/mannlib/vitro/webapp/auth/policy/DisplayRestrictedDataToSelfPolicy.java b/webapp/src/edu/cornell/mannlib/vitro/webapp/auth/policy/DisplayRestrictedDataToSelfPolicy.java
index 4c20c3a84..e1af1c68b 100644
--- a/webapp/src/edu/cornell/mannlib/vitro/webapp/auth/policy/DisplayRestrictedDataToSelfPolicy.java
+++ b/webapp/src/edu/cornell/mannlib/vitro/webapp/auth/policy/DisplayRestrictedDataToSelfPolicy.java
@@ -11,7 +11,6 @@ import org.apache.commons.logging.LogFactory;
 
 import edu.cornell.mannlib.vitro.webapp.auth.identifier.IdentifierBundle;
 import edu.cornell.mannlib.vitro.webapp.auth.identifier.common.HasAssociatedIndividual;
-import edu.cornell.mannlib.vitro.webapp.auth.identifier.common.HasRoleLevel;
 import edu.cornell.mannlib.vitro.webapp.auth.policy.bean.PropertyRestrictionPolicyHelper;
 import edu.cornell.mannlib.vitro.webapp.auth.policy.ifaces.Authorization;
 import edu.cornell.mannlib.vitro.webapp.auth.policy.ifaces.PolicyDecision;
@@ -57,11 +56,6 @@ public class DisplayRestrictedDataToSelfPolicy implements PolicyIface {
 			return defaultDecision("whatToAuth was null");
 		}
 
-		RoleLevel userRole = HasRoleLevel.getUsersRoleLevel(whoToAuth);
-		if (userRole != RoleLevel.SELF) {
-			return defaultDecision("not a self-editor");
-		}
-
 		Collection<String> associated = HasAssociatedIndividual
 				.getIndividualUris(whoToAuth);
 		if (associated.isEmpty()) {