Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Issue with record level, role based security #1591

Closed
morphace opened this issue Aug 5, 2013 · 0 comments
Closed

Issue with record level, role based security #1591

morphace opened this issue Aug 5, 2013 · 0 comments
Assignees
@lvca
Milestone
1.5.1

Comments

@morphace
Copy link

morphace commented Aug 5, 2013

I'm using OrientDB 1.5.0 and might have hit an issue with the record level, role based security.

Here is what I run in the console:

connect local:/Users/markus/orientdb/OrientDevDB admin admin          
create class Test extends ORestricted
alter class Test custom onCreate.identityType=role
insert into orole set name='role1', mode=1
insert into orole set name='role2', mode=1
update orole put rules = "database.class.Test", 15 where name = "role1"
update orole put rules = "database.class.Test", 15 where name = "role2"
insert into ouser set name = 'user1', password = 'user1', status = 'ACTIVE', roles = (select from ORole where name = 'role1')
insert into ouser set name = 'user2', password = 'user2', status = 'ACTIVE', roles = (select from ORole where name = 'role2')
connect local:/Users/markus/orientdb/OrientDevDB user1 user1
insert into test (field) values('xxx')
connect local:/Users/markus/orientdb/OrientDevDB user2 user2
select * from test

----+-----+-----+------
#   |@RID |field|_allow
----+-----+-----+------
0   |#11:0|xxx  |[1]  
----+-----+-----+------

But the select should return no rows, because user2 has a different role (role2)?
@ghost ghost assigned lvca Aug 5, 2013
lvca added a commit that referenced this issue Aug 8, 2013
@lvca
Fixed issue #1591
7e31bc0
lvca added a commit that referenced this issue Aug 8, 2013
@lvca
Fixed issue #1591
2f43a8e
@lvca lvca closed this as completed Aug 8, 2013
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@lvca lvca

Labels
None yet
Milestone
1.5.1
Development

No branches or pull requests
2 participants
@lvca @morphace