ACL to retrieve user information
3 views
Skip to first unread message
CEA-SEPIA
Jan 17, 2011, 9:02:54 AM1/17/11
to UCengine
Hello,
When I try to retrieve the information (GET /user/{uid}) of a
connected user (himself) I get a Unauthorized response.
Which ACL rules has to be applied to allow the user to access to their
information ?
Thanks
When I try to retrieve the information (GET /user/{uid}) of a
connected user (himself) I get a Unauthorized response.
Which ACL rules has to be applied to allow the user to access to their
information ?
Thanks
CEA-SEPIA
Jan 18, 2011, 6:25:47 AM1/18/11
to UCengine
I try:
bin/ucectl acl add --uid 'mms' --org 'cea' --object 'user' --action
'get'
But all my user can get user informations, not only 'mms'.
I also try:
bin/ucectl acl add --uid 'mms' --org 'cea' --object 'user' --action
'get' --user '_uid_'
But all my user can get user informations, not only 'mms', and they
can retrieve informations of other users.
Is it a mistake in my tuples ?
Thanks
bin/ucectl acl add --uid 'mms' --org 'cea' --object 'user' --action
'get' --user '_uid_'
On 17 jan, 18:57, Victor Goya <bebepho...@gmail.com> wrote:
> The required right is:
> object='user'
> action='get'
>
> The only condition is user='_uid_', to limit the right to a single user
> with its uid.
>
> --
> Victor Goya
bin/ucectl acl add --uid 'mms' --org 'cea' --object 'user' --action
'get'
But all my user can get user informations, not only 'mms'.
I also try:
bin/ucectl acl add --uid 'mms' --org 'cea' --object 'user' --action
'get' --user '_uid_'
But all my user can get user informations, not only 'mms', and they
can retrieve informations of other users.
Is it a mistake in my tuples ?
Thanks
bin/ucectl acl add --uid 'mms' --org 'cea' --object 'user' --action
'get' --user '_uid_'
On 17 jan, 18:57, Victor Goya <bebepho...@gmail.com> wrote:
> object='user'
> action='get'
>
> The only condition is user='_uid_', to limit the right to a single user
> with its uid.
>
> --
> Victor Goya
CEA-SEPIA
Jan 18, 2011, 8:21:52 AM1/18/11
to UCengine
Maybe a mistake from my side but for this acl rule:
error.
This rule: bin/ucectl acl add --uid 'mms' --org 'cea' --object 'user'
--action --user '_uid_'
Doesn't work for me. Where is the mistake ? Can you document a little
more the ACL objects ?
Thanks
bin/ucectl acl add --uid 'mms' --org 'cea' --object 'user' --action
Only mms have access to the functionnality sorry. This wasn't an
error.
This rule: bin/ucectl acl add --uid 'mms' --org 'cea' --object 'user'
--action --user '_uid_'
Doesn't work for me. Where is the mistake ? Can you document a little
more the ACL objects ?
Thanks
Reply all
Reply to author
Forward
Message has been deleted
0 new messages