Github user mcgilman commented on a diff in the pull request:
https://github.com/apache/nifi/pull/2703#discussion_r190919318
--- Diff:
nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-file-authorizer/src/main/java/org/apache/nifi/authorization/RoleAccessPolicy.java
---
@@ -63,7 +63,7 @@ public String getAction() {
final Set<RoleAccessPolicy> provenancePolicies = new HashSet<>();
provenancePolicies.add(new
RoleAccessPolicy(ResourceType.Provenance.getValue(), READ_ACTION));
if (rootGroupId != null) {
- provenancePolicies.add(new
RoleAccessPolicy(ResourceType.Data.getValue() +
ResourceType.ProcessGroup.getValue() + "/" + rootGroupId, READ_ACTION));
+ provenancePolicies.add(new
RoleAccessPolicy(ResourceType.ProvenanceData.getValue() +
ResourceType.ProcessGroup.getValue() + "/" + rootGroupId, READ_ACTION));
--- End diff --
In order to be consistent with our 0.x concept of provenance access, this
should include both ProvenanceData and Data.
---
