mirror of
https://gitee.com/milvus-io/milvus.git
synced 2026-01-07 19:31:51 +08:00
10d3224638
issue: #28960 master pr: #28961 add new configuration: builtinRoles user can define roles in config file: milvus.yaml there is an example: db_ro, only have read privileges, include load db_rw, read and write privileges, include create/drop/rename collection db_admin, not only read and write privileges, but also user administration Signed-off-by: PowderLi <min.li@zilliz.com>
46 lines
1.0 KiB
Go
46 lines
1.0 KiB
Go
package paramtable
|
|
|
|
import (
|
|
"github.com/milvus-io/milvus/pkg/config"
|
|
"github.com/milvus-io/milvus/pkg/util/funcutil"
|
|
)
|
|
|
|
type roleConfig struct {
|
|
Enabled ParamItem `refreshable:"false"`
|
|
Roles ParamItem `refreshable:"false"`
|
|
}
|
|
|
|
func (p *roleConfig) init(base *BaseTable) {
|
|
p.Enabled = ParamItem{
|
|
Key: "builtinRoles.enable",
|
|
DefaultValue: "false",
|
|
Version: "2.3.4",
|
|
Doc: "Whether to init builtin roles",
|
|
Export: true,
|
|
}
|
|
p.Enabled.Init(base.mgr)
|
|
|
|
p.Roles = ParamItem{
|
|
Key: "builtinRoles.roles",
|
|
DefaultValue: `{}`,
|
|
Version: "2.3.4",
|
|
Doc: "what builtin roles should be init",
|
|
Export: true,
|
|
}
|
|
p.Roles.Init(base.mgr)
|
|
|
|
p.panicIfNotValid(base.mgr)
|
|
}
|
|
|
|
func (p *roleConfig) panicIfNotValid(mgr *config.Manager) {
|
|
if p.Enabled.GetAsBool() {
|
|
m := p.Roles.GetAsRoleDetails()
|
|
if m == nil {
|
|
panic("builtinRoles.roles not invalid, should be json format")
|
|
}
|
|
|
|
j := funcutil.RoleDetailsToJSON(m)
|
|
mgr.SetConfig("builtinRoles.roles", string(j))
|
|
}
|
|
}
|