[
https://issues.apache.org/jira/browse/SOLR-16621?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17683375#comment-17683375
]
ASF subversion and git services commented on SOLR-16621:
--------------------------------------------------------
Commit 6c82db6e5f06ed5ede72e70813ee99b0728f029e in solr's branch
refs/heads/main from Jan Høydahl
[ https://gitbox.apache.org/repos/asf?p=solr.git;h=6c82db6e5f0 ]
SOLR-16621 Use $scope.isPermitted("my-permissiong") in security dash
Also support the 'all' permission in isPermitted()
> Admin UI fails to grant user permissions that have wildcard role
> ----------------------------------------------------------------
>
> Key: SOLR-16621
> URL: https://issues.apache.org/jira/browse/SOLR-16621
> Project: Solr
> Issue Type: Bug
> Components: Security UI
> Affects Versions: 9.1
> Reporter: Jan Høydahl
> Assignee: Jan Høydahl
> Priority: Major
> Fix For: 9.2
>
> Time Spent: 40m
> Remaining Estimate: 0h
>
> Admin UI has a Security Dashboard that requires the 'security-read'
> permission to view and the 'security-edit' permission to modify.
> It will display an error message if the user lacks these permission, based on
> a match of user's roles and the permission roles. This works fine.
> However, if any authenticated user is granted a permission through wildcard
> role, e.g.
> {code:java}
> "permissions": [ {"name": "security-read", "role": "*"}] {code}
> ...then the check fails since it does not understand wildcard roles.
> [~thelabdude]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
