You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@solr.apache.org by "Jan Høydahl (Jira)" <ji...@apache.org> on 2023/01/17 09:45:00 UTC
[jira] [Created] (SOLR-16621) Admin UI fails to grant user permissions that have wildcard role
Jan Høydahl created SOLR-16621:
----------------------------------
Summary: Admin UI fails to grant user permissions that have wildcard role
Key: SOLR-16621
URL: https://issues.apache.org/jira/browse/SOLR-16621
Project: Solr
Issue Type: Bug
Security Level: Public (Default Security Level. Issues are Public)
Components: Security UI
Affects Versions: 9.1
Reporter: Jan Høydahl
Assignee: Jan Høydahl
Admin UI has a Security Dashboard that requires the 'security-read' permission to view and the 'security-edit' permission to modify.
It will display an error message if the user lacks these permission, based on a match of user's roles and the permission roles. This works fine.
However, if any authenticated user is granted a permission through wildcard role, e.g.
{code:java}
"permissions": [ {"name": "security-read", "role": "*"}] {code}
...then the check fails since it does not understand wildcard roles.
[~thelabdude]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org
For additional commands, e-mail: issues-help@solr.apache.org