Uploaded image for project: 'Isis'
  1. Isis
  2. ISIS-218

Allow file authorizor whitelist to default to "allowed"

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Trivial
    • Resolution: Won't Fix
    • Affects Version/s: 0.2.0-incubating
    • Fix Version/s: 1.10.0
    • Labels:
      None

      Description

      As it stands, the file authorizer (FileAuthorizor) requires that a service/class/action explicitly be listed in the white list for it to be allowed.
      If the same service/class/action is also listed on the black list, then it is disallowed.

      I am adding the following property, which defaults to false:
      isis.authorization.file.whitelist.empty.isallowed=true
      to allow the white list to allow all by default, if the whitelist file is empty.

      This allows you to specify only those roles that are disallowed in the black list, while leaving the whitelist empty.

        Attachments

          Activity

            People

            • Assignee:
              kevin-m Kevin Meyer
              Reporter:
              kevin-m Kevin Meyer
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: