Details
-
Improvement
-
Resolution: Fixed
-
Major
-
4.1.2, 4.5.0
-
None
Description
Actual data access for users of the role "Bucket Administrator [bucket_name]" include:
- Admin Console: can create/read/update/delete documents of that bucket, but they have no Query workbench available, so they cannot execute N1QL queries
- REST API: can execute queries by including basic authentication credentials in the request
- cbq: can execute queries by setting user/password as cbq args.
Request is for including Query access in the Admin UI for this role: If the user has role Bucket Admin on bucket_name, allow query from Admin UI for that bucket.
Since it can be done by REST and cbq, it have sense to allow it also from admin UI.
Attachments
Issue Links
- relates to
-
MB-16036 AuthZ : RBAC for Applications
- Closed