Questions tagged [access-control]
Access control is the process of limiting the access of ability of users or services to certain resources.
access-control
1,390
questions
0
votes
1
answer
40
views
Azure SQL analysts can create views from forbidden cross database data
TLDR Problem
User can view forbidden data by creating a view to the forbidden data in his own personal schema where he has CONTROL permissions.
Introduction
I have a Azure SQL (Managed Instance) ...
0
votes
1
answer
44
views
System.Security.AccessControl AccessControlType vs AceType
Is System.Security.AccessControl.AceType is just more detailed version of System.Security.AccessControl.AccessControlType? Is there a way to convert AceType to AccessControlType or these are two ...
0
votes
0
answers
18
views
How to organize the issuance of rights in Kubernetes IaC?
How to organize the issuance of rights in Kubernetes IaC? I have a cluster with many namespaces, developers only need rights to individual namespaces. I don’t want to do this manually, I believe that ...
2
votes
2
answers
104
views
Protected and "package-private" visibility when inheriting from class in different package
I'm kind of new to visibility and want to really internilize these concepts.
I've learnt that "package-private", the default visibility in Java, allows us to see fields from classes in the ...
0
votes
0
answers
15
views
Disallowing access to specific file(s) on a per-process basis?
Unix has several ways to control file access on a per-user basis. I'm interested to know if there's a way to do this on a per-process basis; in particular making the file unreadable or even invisible ...
0
votes
0
answers
29
views
Restricting mediawiki pages based on Category and Group
I have a page with this content , which is a page intended to be accessible only for users in the "sales" group. Even for read.
This page contains content for sales.
<!-- Tag for ...
0
votes
0
answers
14
views
Is it possible to set up different first factor authentication method on ADFS based on group membership?
I am new in the security environment and I am still learning, I am trying setting up MFA on ADFS and wondering if it's possible to set a configuration like this one:
The normal user just logs with ...
0
votes
1
answer
55
views
Cannot create a page on mediawiki
When i submit a new page , i always get this error:
Sorry! We could not process your edit due to a loss of session data.
You might have been logged out. Please verify that you're still logged
in and ...
0
votes
1
answer
97
views
api platform security check performed after custom provider code is already executed
I have encountered very unpleasant API Platform behavior with security with custom providers.
I really need some explanation if this behavior is really intended or is it a security flaw.
During my ...
0
votes
0
answers
43
views
Why is my Voter being called multiple times and without the subject when securing properties in API Platform?
I am working on a Symfony 7 application where I need to implement fine-grained access control using security voters. Specifically, I want to grant access to an entire resource based on one set of ...
0
votes
0
answers
37
views
Implementing User-Based Device Filtering in ThingsBoard
Body
I am planning to filter devices based on the user in Thingsbaord . Imagine there is a main user; this user allows other users to see information about certain devices or not. I am planning the ...
0
votes
0
answers
18
views
RBAC system that lets you pick what role you want to log into?
I'm working with a system that asks you to select which role you want to use when you log in. Is there a name for this approach? (The other RBAC systems I've worked with simply give the user the union ...
0
votes
0
answers
37
views
CORS error continues on node.js even after importing the cors package
I have included the cors package tries the res.header and still getting the cors error
Access to XMLHttpRequest at 'localhost:3000/auth' from origin 'http://localhost:4200' has been blocked by CORS ...
-2
votes
1
answer
56
views
AWS: Cross account access fails with not authorized to access this resource
I'm trying to set up cross account access in AWS. I'd like to access the parent account from a sub account. This is what I've done so far:
Parent Account:
Created a new role test_role and gave it full ...
0
votes
0
answers
230
views
Handling Unique Permissions with CASL and TypeORM in NestJs
I'm using CASL for authorization in my NestJS application with TypeORM for persistence. I've defined permissions with unique constraints on "action" and "subject" columns to ...