[
https://issues.apache.org/jira/browse/GEODE-3330?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16148061#comment-16148061
]
ASF GitHub Bot commented on GEODE-3330:
---------------------------------------
GitHub user karensmolermiller opened a pull request:
https://github.com/apache/geode/pull/750
GEODE-3330 Document modified CQ authorization permissions
@joeymcallister @davebarnes97 @jinmeiliao @kirklund @jaredjstewart
Please review.
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/karensmolermiller/geode feature/GEODE-3330
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/geode/pull/750.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #750
----
commit de50e433f8d381e85d9df311794bd0bdebfe0712
Author: Karen Miller <[email protected]>
Date: 2017-08-30T21:00:28Z
GEODE-3330 Document modified CQ authorization permissions
----
> secure ability to register CQ
> -----------------------------
>
> Key: GEODE-3330
> URL: https://issues.apache.org/jira/browse/GEODE-3330
> Project: Geode
> Issue Type: Sub-task
> Components: docs, security
> Reporter: Swapnil Bawaskar
> Assignee: Karen Smoler Miller
>
> With integrated security, we require that for registering a CQ user must have
> CLUSTER:MANAGE:QUERY permissions. This however, means that a user with
> CLUSTER:MANAGE will be able to register a CQ with initial results and be able
> to see data.
> In order to register a CQ with initial results, we should require that the
> user has DATA:READ permission.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
