rule-based-authorization-plugin.html

svn-site-role Sun, 19 Feb 2023 17:44:21 -0800

Modified: 
sites/solr/guide/solr/9_0/deployment-guide/rule-based-authorization-plugin.html
URL: 
http://svn.apache.org/viewvc/sites/solr/guide/solr/9_0/deployment-guide/rule-based-authorization-plugin.html?rev=1082298&r1=1082297&r2=1082298&view=diff
==============================================================================
--- 
sites/solr/guide/solr/9_0/deployment-guide/rule-based-authorization-plugin.html 
(original)
+++ 
sites/solr/guide/solr/9_0/deployment-guide/rule-based-authorization-plugin.html 
Mon Feb 20 01:44:15 2023
@@ -1696,6 +1696,7 @@ If read permissions should only be appli
 </li>
 <li>
 <p><strong>config-edit</strong>: this permission is allowed to edit a 
collection&#8217;s configuration using the <a 
href="../configuration-guide/config-api.html" class="xref page">Config API</a>, 
the <a href="../configuration-guide/request-parameters-api.html" class="xref 
page">Request Parameters API</a>, and other APIs which modify 
<code>configoverlay.json</code>.
+Because configs <a 
href="../configuration-guide/libs.html#lib-directives-in-solrconfig" 
class="xref page">can add libraries/custom code</a> from various locations, 
loading any new code via a trusted SolrConfig is explicitly allowed for users 
with this permission.
 Note that this allows configuration edit permissions for <em>all</em> 
collections.
 If edit permissions should only be applied to specific collections, a custom 
permission would need to be created.</p>
 </li>


Modified: 
sites/solr/guide/solr/latest/deployment-guide/rule-based-authorization-plugin.html
URL: 
http://svn.apache.org/viewvc/sites/solr/guide/solr/latest/deployment-guide/rule-based-authorization-plugin.html?rev=1082298&r1=1082297&r2=1082298&view=diff
==============================================================================
--- 
sites/solr/guide/solr/latest/deployment-guide/rule-based-authorization-plugin.html
 (original)
+++ 
sites/solr/guide/solr/latest/deployment-guide/rule-based-authorization-plugin.html
 Mon Feb 20 01:44:15 2023
@@ -1699,6 +1699,7 @@ If read permissions should only be appli
 </li>
 <li>
 <p><strong>config-edit</strong>: this permission is allowed to edit a 
collection&#8217;s configuration using the <a 
href="../configuration-guide/config-api.html" class="xref page">Config API</a>, 
the <a href="../configuration-guide/request-parameters-api.html" class="xref 
page">Request Parameters API</a>, and other APIs which modify 
<code>configoverlay.json</code>.
+Because configs <a 
href="../configuration-guide/libs.html#lib-directives-in-solrconfig" 
class="xref page">can add libraries/custom code</a> from various locations, 
loading any new code via a trusted SolrConfig is explicitly allowed for users 
with this permission.
 Note that this allows configuration edit permissions for <em>all</em> 
collections.
 If edit permissions should only be applied to specific collections, a custom 
permission would need to be created.</p>
 </li>

svn commit: r1082298 [3/3] - in /sites/solr/guide: search-index.js sitemap.xml solr/9_0/deployment-guide/rule-based-authorization-plugin.html solr/latest/deployment-guide/rule-based-authorization-plugin.html

Reply via email to