You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@kylin.apache.org by "Chaozhong Yang (JIRA)" <ji...@apache.org> on 2016/09/22 10:04:20 UTC

[jira] [Created] (KYLIN-2038) 'Access denied' occurred if a query hit none of cubes and the user is not in admin role.

Chaozhong Yang created KYLIN-2038:
-------------------------------------

             Summary: 'Access denied' occurred if a query hit none of cubes and the user is not in admin role.
                 Key: KYLIN-2038
                 URL: https://issues.apache.org/jira/browse/KYLIN-2038
             Project: Kylin
          Issue Type: Bug
          Components: REST Service
    Affects Versions: all
            Reporter: Chaozhong Yang
            Assignee: Zhong,Jason
             Fix For: Future


The  method `checkCubeAuthorization` in QueryService will check permission for every query. If a query has not hit any cube in Kylin, `checkCubeAuthorization` will throw AccessDeniedException.

"@PreAuthorize(Constant.ACCESS_HAS_ROLE_ADMIN + " or hasPermission(#cube, 'ADMINISTRATION') or hasPermission(#cube, 'MANAGEMENT')" + " or hasPermission(#cube, 'OPERATION') or hasPermission(#cube, 'READ')")" will throw AccessDeniedException if cube is null.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)