Hi All
I've manage to configure my security.json so that a read only user can access
the admin panel but not update any docs or create/edit collections...
security.json is as below
One thing they *can* do, which I'd rather they couldn't, is click the "Disable
Replication" button on the core replication screen and disable the
replication... Any idea how to disable this for a given user/role?
Ta! Paul
{
"authentication":{
"blockUnknown":true,
"class":"solr.BasicAuthPlugin",
"credentials":{
"solr-admin":"IV0EHq1OnNrj6gvRCwvFwTrZ1+z1oBbnQdiVC3otuq0=
Ndd7LKvVBAaZIF0QAVi1ekCfAJXr1GGfLtRUXhgrF8c=",
"solr-read":"IV0EHq1OnNrj6gvRCwvFwTrZ1+z1oBbnQdiVC3otuq0=
Ndd7LKvVBAaZIF0QAVi1ekCfAJXr1GGfLtRUXhgrF8c="},
"forwardCredentials":false,
"":{"v":0}},
"authorization":{
"class":"solr.RuleBasedAuthorizationPlugin",
"user-role":{
"solr-admin":["admin"],
"solr-read":["readonly"]},
"permissions":[
{
"name":"update",
"role":[
"admin"],
"index":1},
{
"name":"read",
"role":[
"admin",
"readonly"],
"index":2},
{
"name":"security-edit",
"role":["admin"],
"index":3},
{
"name":"security-read",
"role":["admin"],
"index":4},
{
"name":"core-admin-edit",
"role":["admin"],
"index":5},
{
"name":"collection-admin-edit",
"role":["admin"],
"index":6},
{
"name":"config-edit",
"role":["admin"],
"index":7},
{
"name":"config-read",
"role":["admin"],
"index":8},
{
"name":"schema-edit",
"role":["admin"],
"index":9},
{
"name":"filestore-write",
"role":["admin"],
"index":10},
{
"name":"package-edit",
"role":["admin"],
"index":11},
{
"name":"all",
"role":[
"admin",
"readonly"],
"index":12}],
"":{"v":0}}}
