[MarkLogic Dev General] Creating user with read-only permission

Will Thompson wthompson at jonesmcclure.com
Fri Aug 31 10:08:13 PDT 2012


Sorry Danny, I misunderstood your config. As Ryan and Mike have already pointed out, I think you will need separate reader and writer roles. This is how our permissions are configured as well.

-W


From: general-bounces at developer.marklogic.com [mailto:general-bounces at developer.marklogic.com] On Behalf Of Danny Sinang
Sent: Friday, August 31, 2012 8:57 AM
To: MarkLogic Developer Discussion
Subject: Re: [MarkLogic Dev General] Creating user with read-only permission

Hi Will,

The default permissions are as follows :

x-user : read
x-user : insert
x-user : update
x-user : execute
security : read
secuirty : insert
security : update

I haven't tried creating a role with x-admin : read as you are suggesting.

I tried, last night, creating a role with x-user : read. But that didn't work. Couldn't even read the data.

Regards,
Danny

On Fri, Aug 31, 2012 at 11:25 AM, Will Thompson <wthompson at jonesmcclure.com<mailto:wthompson at jonesmcclure.com>> wrote:
Danny,

What default permissions, if any, are set on your documents? Have you tried creating a role with only x-admin : read?

-W


From: general-bounces at developer.marklogic.com<mailto:general-bounces at developer.marklogic.com> [mailto:general-bounces at developer.marklogic.com<mailto:general-bounces at developer.marklogic.com>] On Behalf Of Danny Sinang
Sent: Friday, August 31, 2012 6:57 AM
To: general
Subject: [MarkLogic Dev General] Creating user with read-only permission

Hi,

I need to create users with read-only permission over all our documents but, from what I've read, it looks like I have to update the permissions on all documents to do this.

We've got around 10 million documents in ML and all of them were created using a user called "x-admin-user" who is assigned the following roles :

admin
security
dls-user
dls-admin
x-admin

The x-admin role has the following default permissions :

x-user : read
x-user : insert
x-user : update
x-user : execute

So far, the only way I can give my new users access to our data is to give them the role of "x-user" but that gives them update privileges as well.

Is there an easier way to grant read-only access ?

Regards,
Danny


_______________________________________________
General mailing list
General at developer.marklogic.com<mailto:General at developer.marklogic.com>
http://developer.marklogic.com/mailman/listinfo/general

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://developer.marklogic.com/pipermail/general/attachments/20120831/474464c4/attachment.html 


More information about the General mailing list