Re: Issues with Authentication / Role based authorization

2016-05-11 Thread shamik
"role": "browseRole" } ], "": { "v": 6 } } } But when I log in as "dev", I seemed to have similar access to "solr" and "beehive". "dev" can add/delete data, create collection, etc. Will the order of the permissions matter here even though "dev" is assigned to a specific role ? -- View this message in context: http://lucene.472066.n3.nabble.com/Issues-with-Authentication-Role-based-authorization-tp4276024p4276203.html Sent from the Solr - User mailing list archive at Nabble.com.

Re: Issues with Authentication / Role based authorization

2016-05-11 Thread Brian J. Vanecek
I can't say I followed your entire example, but I think you're running into a couple of issues: 1) Users don't get any roles by default. So, when you initial setup includes this: { "name": "all", "role": "all" } but nobody has the "all" role, it doesn't surprise m

Re: Issues with Authentication / Role based authorization

2016-05-11 Thread shamik
Anyone ? -- View this message in context: http://lucene.472066.n3.nabble.com/Issues-with-Authentication-Role-based-authorization-tp4276024p4276153.html Sent from the Solr - User mailing list archive at Nabble.com.

Re: Issues with Authentication / Role based authorization

2016-05-10 Thread shamik
t;: { "v": 2 } } } And authorization: { "responseHeader": { "status": 0, "QTime": 0 }, "authorization.enabled": true, "authorization": { "class": "solr.RuleBasedAuthorizationPlugin", "user-role": { "solr": "admin", "superuser": [ "browseRole", "selectRole" ], "beehive": [ "browseRole", "selectRole" ] }, "permissions": [ { "name": "security-edit", "role": "admin" }, { "name": "select", "collection": "gettingstarted", "path": "/select/*", "role": "selectRole" }, { "name": "browse", "collection": "gettingstarted", "path": "/browse", "role": "browseRole" } ], "": { "v": 7 } } } I was under the impression that these roles are independent of each other, based on the assignment, individual user should be able to access their respective areas. On a related note, I was not able to make roles like "all", "read" work. Not sure what I'm doing wrong here. Any feedback will be appreciated. Thanks, Shamik -- View this message in context: http://lucene.472066.n3.nabble.com/Issues-with-Authentication-Role-based-authorization-tp4276024p4276056.html Sent from the Solr - User mailing list archive at Nabble.com.