Uploaded image for project: 'Solr'
  1. Solr
  2. SOLR-9041

create a well known permission for core-admin-read and core-admin-edit

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 6.1, master (7.0)
    • Component/s: None
    • Labels:
      None

      Description

      We have missed this very important operation. Any admin operation would need to restrict this

        Activity

        Hide
        jira-bot ASF subversion and git services added a comment -

        Commit 0233765c274ec9d308ca4eb621f26bd4ed9d0a39 in lucene-solr's branch refs/heads/master from Noble Paul
        [ https://git-wip-us.apache.org/repos/asf?p=lucene-solr.git;h=0233765 ]

        SOLR-9041: 'core-admin-read' and 'core-admin-edit' are well known permissions

        Show
        jira-bot ASF subversion and git services added a comment - Commit 0233765c274ec9d308ca4eb621f26bd4ed9d0a39 in lucene-solr's branch refs/heads/master from Noble Paul [ https://git-wip-us.apache.org/repos/asf?p=lucene-solr.git;h=0233765 ] SOLR-9041 : 'core-admin-read' and 'core-admin-edit' are well known permissions
        Hide
        jira-bot ASF subversion and git services added a comment -

        Commit 8162ba4534af12879a2da03d4c4d3239a6d3a8fb in lucene-solr's branch refs/heads/branch_6x from Noble Paul
        [ https://git-wip-us.apache.org/repos/asf?p=lucene-solr.git;h=8162ba4 ]

        SOLR-9041: 'core-admin-read' and 'core-admin-edit' are well known permissions

        Show
        jira-bot ASF subversion and git services added a comment - Commit 8162ba4534af12879a2da03d4c4d3239a6d3a8fb in lucene-solr's branch refs/heads/branch_6x from Noble Paul [ https://git-wip-us.apache.org/repos/asf?p=lucene-solr.git;h=8162ba4 ] SOLR-9041 : 'core-admin-read' and 'core-admin-edit' are well known permissions
        Hide
        ichattopadhyaya Ishan Chattopadhyaya added a comment -

        +1 to the fix. Noble Paul, do you think we should backport to the 5x branch? For anyone using role based authorization using 5x, I think this is important. If you think otherwise, maybe we should document a workaround (as to how an admin can restrict core admin commands) and point 5x users to the workaround? However, I do understand that fixing at 6.1 and backporting to 5x would leave 6.0 without the fix, which is a tricky situation. I'll leave to your judgement, or Anshum Gupta's suggestions.

        Show
        ichattopadhyaya Ishan Chattopadhyaya added a comment - +1 to the fix. Noble Paul , do you think we should backport to the 5x branch? For anyone using role based authorization using 5x, I think this is important. If you think otherwise, maybe we should document a workaround (as to how an admin can restrict core admin commands) and point 5x users to the workaround? However, I do understand that fixing at 6.1 and backporting to 5x would leave 6.0 without the fix, which is a tricky situation. I'll leave to your judgement, or Anshum Gupta 's suggestions.
        Hide
        noble.paul Noble Paul added a comment -
        • This is a new feature. We are not yet planning to introduce new features into 5.5.1
        • The backporting is not trivial. The implementation has changed significantly as a result of SOLR-8842
        Show
        noble.paul Noble Paul added a comment - This is a new feature. We are not yet planning to introduce new features into 5.5.1 The backporting is not trivial. The implementation has changed significantly as a result of SOLR-8842
        Hide
        anshumg Anshum Gupta added a comment -

        Back porting this to 5x branch would mean this gets released with 5.6, but as this is a new feature and is not a part of 6.0, the users who move from 5.6 to 6.0 would have compatibility issues.

        Show
        anshumg Anshum Gupta added a comment - Back porting this to 5x branch would mean this gets released with 5.6, but as this is a new feature and is not a part of 6.0, the users who move from 5.6 to 6.0 would have compatibility issues.
        Hide
        hossman Hoss Man added a comment -

        Manually correcting fixVersion per Step #S5 of LUCENE-7271

        Show
        hossman Hoss Man added a comment - Manually correcting fixVersion per Step #S5 of LUCENE-7271

          People

          • Assignee:
            noble.paul Noble Paul
            Reporter:
            noble.paul Noble Paul
          • Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development