Project

General

Profile

Actions
Copy link

Task #5905

closed

Feature #5810: Implement SOLR-based search

Task #5822: Enforce access control for SOLR-based search implementation

Implement access control filter

Added by ben leinfelder about 11 years ago. Updated almost 11 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Jing Tao
Category:
-
Target version:
2.1.0
Start date:
04/11/2013
Due date:
% Done:

0%

Estimated time:
Actions
Copy link
 #1

Updated by Jing Tao almost 11 years ago

Append filter query (fq) to the main query. The fq looks like:
fq=(readPermission:"public")OROR....

The username and group information will be got from the session.

Actions
Copy link
 #2

Updated by Jing Tao almost 11 years ago

I also tested that if there is a fq in the user specified query, it wouldn't cause any issue:

The user specified query is:
q=title:*solr*&fl=title,id&fq=id:tao.1

And the actually query was executed is:

webapp=null path=/select params={{main(fl=title,id&q=title:*solr*&fq=id:tao.1),extra(fq=(readPermission:"public"))}}

Actions
Copy link
 #3

Updated by Jing Tao almost 11 years ago

  • Status changed from New to Resolved

Add junit test to test the public, specified user and group users readable documents. Also it tests a use with untrusted certificate. It works.

Actions
Copy link

Also available in: Atom PDF