i have a vertex class called "product" - read to everyone
product has a derrived class "product_secret" - read to only administrators
and there is another vertex class "manufacturing". There are links from product to manufacturing.
Note that the edge class is not role restricted.
now if i am a normal user, I cannot do:
- traverse: will always fail with com.orientechnologies.orient.core.exception.OSecurityAccessException: User 'xxx' has no the permission to execute the operation 'Read' against the resource: ResourceGeneric [name=CLUSTER, legacyName=database.cluster].product_secret
-select without a where condition. Note that if i have a where condition, this will return correct record, empty set if i do a where @class='product_secret'.
Just one restricted cluster in the graph makes the whole graph unusable for me.
The expected behavior would be just to just exclude vertices that are restricted and also paths that include restricted vertices
Is there any workaround or am I using this incorrectly?