You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@lucene.apache.org by ep...@apache.org on 2021/10/07 14:44:41 UTC
[lucene-solr] branch branch_8x updated: backport SOLR-15626
This is an automated email from the ASF dual-hosted git repository.
epugh pushed a commit to branch branch_8x
in repository https://gitbox.apache.org/repos/asf/lucene-solr.git
The following commit(s) were added to refs/heads/branch_8x by this push:
new 1174b32 backport SOLR-15626
1174b32 is described below
commit 1174b32e17034cb54b9d98ae4016bfc37a8f8191
Author: epugh@opensourceconnections.com <>
AuthorDate: Thu Oct 7 10:44:17 2021 -0400
backport SOLR-15626
---
solr/CHANGES.txt | 3 ++-
.../core/src/java/org/apache/solr/security/PermissionNameProvider.java | 2 +-
2 files changed, 3 insertions(+), 2 deletions(-)
diff --git a/solr/CHANGES.txt b/solr/CHANGES.txt
index 040a063..0af5dd1 100644
--- a/solr/CHANGES.txt
+++ b/solr/CHANGES.txt
@@ -22,7 +22,8 @@ Optimizations
Bug Fixes
---------------------
-(No changes)
+* SOLR-15626: The "config-read" permission has been fixed to properly allow access to `/solr/admin/configs?action=LIST` (Jon Senchyna via Eric Pugh)
+
Build
---------------------
diff --git a/solr/core/src/java/org/apache/solr/security/PermissionNameProvider.java b/solr/core/src/java/org/apache/solr/security/PermissionNameProvider.java
index 618a572..b7e184f 100644
--- a/solr/core/src/java/org/apache/solr/security/PermissionNameProvider.java
+++ b/solr/core/src/java/org/apache/solr/security/PermissionNameProvider.java
@@ -42,7 +42,7 @@ public interface PermissionNameProvider {
READ_PERM("read", "*"),
UPDATE_PERM("update", "*"),
CONFIG_EDIT_PERM("config-edit", unmodifiableSet(new HashSet<>(asList("*", null)))),
- CONFIG_READ_PERM("config-read", "*"),
+ CONFIG_READ_PERM("config-read", unmodifiableSet(new HashSet<>(asList("*", null)))),
SCHEMA_READ_PERM("schema-read", "*"),
SCHEMA_EDIT_PERM("schema-edit", "*"),
SECURITY_EDIT_PERM("security-edit", null),