Roles - Code Search

src/main/webapp/WEB-INF/view/admin/user/admin_user_edit.jsp

                                    <label for="roles" class="col-sm-3 text-sm-right col-form-label"><la:message
                                            key="labels.roles"/></label>
                                    <div class="col-sm-9">
                                        <la:errors property="roles"/>
                                        <la:select styleId="roles" property="roles" multiple="true"

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Mon Feb 23 08:03:44 GMT 2026

- 31.4K bytes

- Click Count (0)

github.com/codelibs/fess

src/main/resources/fess_indices/fess_user.user/user.json

      },
      "gidNumber" : {
        "type" : "long"
      },
      "homeDirectory" : {
        "type" : "keyword"
      },
      "groups": {
        "type": "keyword"
      },
      "roles": {
        "type": "keyword"
      }
    }

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Thu Dec 02 13:14:56 GMT 2021

- 2.4K bytes

- Click Count (0)

github.com/codelibs/fess

src/main/java/org/codelibs/fess/app/web/base/login/FessLoginAssist.java

     * For admin actions, verifies that the user has appropriate admin roles or
     * meets the secured annotation requirements.
     *
     * @param resource the login handling resource to check permission for
     * @throws LoginRequiredException if login is required
     * @throws UserRoleLoginException if the user doesn't have required roles
     */
    @Override

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Thu Jul 17 08:28:31 GMT 2025

- 12.1K bytes

- Click Count (0)

github.com/codelibs/fess

src/main/java/org/codelibs/fess/entity/FessUser.java

 */
package org.codelibs.fess.entity;

import java.io.Serializable;

/**
 * Interface representing a Fess user with authentication and authorization information.
 * Provides access to user name, roles, groups, and permissions.
 */
public interface FessUser extends Serializable {

    /**
     * Gets the user's display name.
     * @return The user's name.
     */
    String getName();

    /**

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Thu Jul 17 08:28:31 GMT 2025

- 1.8K bytes

- Click Count (0)

github.com/codelibs/fess

src/main/java/org/codelibs/fess/taglib/FessFunctions.java

     */
    public static boolean hasActionRole(final String role) {
        final String[] roles;
        if (role.endsWith(FessAdminAction.VIEW)) {
            roles = new String[] { role, role.substring(0, role.length() - FessAdminAction.VIEW.length()) };
        } else {
            roles = new String[] { role };
        }

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Fri Nov 28 16:29:12 GMT 2025

- 25.4K bytes

- Click Count (1)

github.com/tiangolo/fastapi

docs/en/docs/how-to/conditional-openapi.md

If you want to secure your API, there are several better things you can do, for example:

* Make sure you have well defined Pydantic models for your request bodies and responses.
* Configure any required permissions and roles using dependencies.
* Never store plaintext passwords, only password hashes.
* Implement and use well-known cryptographic tools, like pwdlib and JWT tokens, etc.
* Add more granular permission controls with OAuth2 scopes where needed.

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Thu Mar 05 18:13:19 GMT 2026

- 2.4K bytes

- Click Count (0)

github.com/codelibs/fess

src/main/java/org/codelibs/fess/api/engine/SearchEngineApiManager.java

public class SearchEngineApiManager extends BaseApiManager {
    private static final String ADMIN_SERVER = "/admin/server_";

    private static final Logger logger = LogManager.getLogger(SearchEngineApiManager.class);

    /** Roles that are allowed to access the search engine API */
    protected String[] acceptedRoles = { "admin" };

    /**
     * Default constructor.
     * Initializes the API manager with the admin server path prefix.
     */

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Thu Mar 26 02:24:40 GMT 2026

- 13.4K bytes

- Click Count (0)

github.com/codelibs/fess

src/main/java/org/codelibs/fess/helper/SuggestHelper.java

                if (fessConfig.isValidSearchLogPermissions(roles.toArray(new String[roles.size()]))) {
                    suggester.indexer()
                            .indexFromSearchWord(sb.toString(), fields.toArray(new String[fields.size()]),
                                    tags.toArray(new String[tags.size()]), roles.toArray(new String[roles.size()]), 1, langs);

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Fri Nov 28 16:29:12 GMT 2025

- 22.3K bytes

- Click Count (0)

github.com/codelibs/fess

src/main/java/org/codelibs/fess/app/web/admin/general/EditForm.java

    @Size(max = 1000)
    public String oicBaseUrl;

    /** OpenID Connect default groups. */
    @Size(max = 1000)
    public String oicDefaultGroups;

    /** OpenID Connect default roles. */
    @Size(max = 1000)
    public String oicDefaultRoles;

    /** SAML service provider base URL. */
    @Size(max = 1000)
    public String samlSpBaseUrl;

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Thu Mar 26 02:24:08 GMT 2026

- 15.8K bytes

- Click Count (0)

github.com/codelibs/fess

src/test/java/org/codelibs/fess/mylasta/direction/FessPropTest.java

            public String getLdapAdminRoleBaseDn() {
                return "ou=roles,dc=example,dc=com";
            }
        };

        // Normal name
        assertEquals("cn=admin,ou=roles,dc=example,dc=com", fessConfig.getLdapAdminRoleSecurityPrincipal("admin"));

        // Asterisk injection attempt
        assertEquals("cn=admin\\2a,ou=roles,dc=example,dc=com", fessConfig.getLdapAdminRoleSecurityPrincipal("admin*"));
    }

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Fri Mar 13 23:01:26 GMT 2026

- 25.4K bytes

- Click Count (0)

Search Options