Task #8224: metacat not promoting node token privs for solr - Infrastructure - DataONE Tasks

Task #8224

metacat not promoting node token privs for solr

Added by Peter Slaughter almost 7 years ago.

Status:

New

Priority:

Normal

Assignee:

Jing Tao

Category:

Metacat

Target version:

Start date:

2017-12-04

Due date:

% Done:

Milestone:

None

Product Version:

Story Points:

Sprint:

Description

When querying the solr index and using a member node token (subject: CN=urn:node:ARCTIC,DC=dataone,DC=org; expires 2018-11-30 16:48:44) the solr query returns 0 result. The same query, when run with a "personal" token (and membership in the LDAP admin group) allows results to be returned from the query for my personal token (subject: http://orcid.org/0000-0002-2192-403X).

The query is run from bash:

token="eyJhbGciOiJSUzI1NiJ9.eyJzdWI...."
curl -v -X GET "https://arcticdata.io/metacat/d1/mn/v2/query/solr/?q=id:\"arctic-data.14419.1\"" -H "Authorization: Bearer $token "

The "member node" token does allow access to this pid for MNRead.get(), so it appears for this type of token, the privs aren't being honored for solr queries.

Also available in: Atom PDF

Project

General

Profile

Infrastructure

Issues

Custom queries

Task #8224

metacat not promoting node token privs for solr