Project

General

Profile

Task #8224

metacat not promoting node token privs for solr

Added by Peter Slaughter almost 4 years ago.

Status:
New
Priority:
Normal
Assignee:
Category:
Metacat
Target version:
-
Start date:
2017-12-04
Due date:
% Done:

0%

Milestone:
None
Product Version:
*
Story Points:
Sprint:

Description

When querying the solr index and using a member node token (subject: CN=urn:node:ARCTIC,DC=dataone,DC=org; expires 2018-11-30 16:48:44) the solr query returns 0 result. The same query, when run with a "personal" token (and membership in the LDAP admin group) allows results to be returned from the query for my personal token (subject: http://orcid.org/0000-0002-2192-403X).

The query is run from bash:

token="eyJhbGciOiJSUzI1NiJ9.eyJzdWI...."
curl -v -X GET "https://arcticdata.io/metacat/d1/mn/v2/query/solr/?q=id:\"arctic-data.14419.1\"" -H "Authorization: Bearer $token "

The "member node" token does allow access to this pid for MNRead.get(), so it appears for this type of token, the privs aren't being honored for solr queries.

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 14.8 MB)