OrientDB 1.6.3 - Record Security Level and Inherited Roles

[Claudio]

Hi guys,
I'm working with the record security level feature and I'm facing a problem related to the inherited roles.
At this moment in the _allow* fields, OrientDB stores the OIdentity RIDs of both OUser and ORole records that have access to a certain record.
My problem is that if I have a Role that inherits by another one, it does not inherit the record permissions too.

I don't know if this behaviour is "by design" or if there is the possibility to patch this feature.
In this case I found that the problem is in lines 128-135 of the OSecurityShared.java (OrientDB 1.6.3) file that don't check the permissions of the parent roles.

WDYT?

Thanks

[Luca Garulli]

Hi Claudio,

this is a bug: that code should follow the inheritance path. Would you like to send us a Pull Req?

Thanks in advance,

Lvc@

--
 
---
You received this message because you are subscribed to the Google Groups "OrientDB" group.
To unsubscribe from this group and stop receiving emails from it, send an email to orient-databa...@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.

[Luca Garulli]

I've just created a new issue for that.

https://github.com/orientechnologies/orientdb/issues/1980

Lvc@

[Claudio Tesoriero]

Ok, I will work on it

You received this message because you are subscribed to a topic in the Google Groups "OrientDB" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/orient-database/bxzZagVN4v4/unsubscribe.
To unsubscribe from this group and all its topics, send an email to orient-databa...@googlegroups.com.