You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@solr.apache.org by "Jan Høydahl (Jira)" <ji...@apache.org> on 2023/01/20 08:40:00 UTC

[jira] [Resolved] (SOLR-16621) Admin UI fails to grant user permissions that have wildcard role

     [ https://issues.apache.org/jira/browse/SOLR-16621?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jan Høydahl resolved SOLR-16621.
--------------------------------
    Fix Version/s: 9.2
       Resolution: Fixed

> Admin UI fails to grant user permissions that have wildcard role
> ----------------------------------------------------------------
>
>                 Key: SOLR-16621
>                 URL: https://issues.apache.org/jira/browse/SOLR-16621
>             Project: Solr
>          Issue Type: Bug
>      Security Level: Public(Default Security Level. Issues are Public) 
>          Components: Security UI
>    Affects Versions: 9.1
>            Reporter: Jan Høydahl
>            Assignee: Jan Høydahl
>            Priority: Major
>             Fix For: 9.2
>
>          Time Spent: 0.5h
>  Remaining Estimate: 0h
>
> Admin UI has a Security Dashboard that requires the 'security-read' permission to view and the 'security-edit' permission to modify.
> It will display an error message if the user lacks these permission, based on a match of user's roles and the permission roles. This works fine.
> However, if any authenticated user is granted a permission through wildcard role, e.g.
> {code:java}
> "permissions": [ {"name": "security-read", "role": "*"}] {code}
> ...then the check fails since it does not understand wildcard roles.
> [~thelabdude] 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org
For additional commands, e-mail: issues-help@solr.apache.org