[
https://issues.apache.org/jira/browse/NIFI-3251?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15836509#comment-15836509
]
ASF GitHub Bot commented on NIFI-3251:
--------------------------------------
Github user mcgilman commented on a diff in the pull request:
https://github.com/apache/nifi/pull/1399#discussion_r97633156
--- Diff:
nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/js/nf/canvas/nf-controller-services.js
---
@@ -497,6 +497,36 @@ nf.ControllerServices = (function () {
};
/**
+ * Determines if the user is authorized for the parent of the
specified controller service.
+ *
+ * @param dataContext
+ * @returns {boolean}
+ */
+ var isAuthorizedForControllerServiceParent = function (dataContext) {
--- End diff --
Agreed. Will update.
> Users who do not have modify the component access policy for a process group
> should not be able to delete components.
> ---------------------------------------------------------------------------------------------------------------------
>
> Key: NIFI-3251
> URL: https://issues.apache.org/jira/browse/NIFI-3251
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Core UI
> Affects Versions: 1.1.0
> Reporter: Matthew Clarke
> Assignee: Matt Gilman
> Priority: Minor
> Fix For: 1.2.0
>
>
> Users are required to have "modify the component" access policy granted to
> them on a process group in which they want to add components to the canvas.
> They are not however required to have this access policy in order to remove
> components from the canvas. If a user is granted the "modify the component"
> access policy on a specific processor, that user can then delete that
> processor. The "modify the component" access policy when granted to a
> processor should only allow that user to modify the configuration (start,
> stop, disable, modify setting/properties). User should still be unable to
> delete that processor.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
