opensemanticsearch / open-semantic-search

Open Source research tool to search, browse, analyze and explore large document collections by Semantic Search Engine and Open Source Text Mining & Text Analytics platform (Integrates ETL for document processing, OCR for images & PDF, named entity recognition for persons, organizations & locations, metadata management by thesaurus & ontologies, search user interface & search apps for fulltext search, faceted search & knowledge graph)
https://opensemanticsearch.org
GNU General Public License v3.0
971 stars 169 forks source link

OSS and security #382

Open KKIMONK opened 5 years ago

KKIMONK commented 5 years ago

Hello, I have a question about security management with OSS. How is it managed? I take an example, I'm using OSS like enterprise search engine on a server and from an user workstations under Windows, the requests are made either under a browser or under the windows explorer. Are rights and windows ACLs inherited by OSS ? In other words, when I make a query search, does the result provided by OSS respect the security set up (rights and ACLs?) Help would be appreciated? Kader

mosea3 commented 5 years ago

Hello Kader,

As of my knowledge:

So: all users see what the generic indexing user has access to..

On my fork, there's a free preview as well, but the respective file is just referenced (UNC Path), not served - thus: If you don't have access to that file under your own Identity you won't get it.

I was either way checking how to map the ACLs of windows (via automatic Kerberos Authentication towards the Unix Server) to OSS in order to limit preview to actual ACLs.

If you got a big enough system environment to set up a demo site (1 unix server for OSS, 1 Windows file server or NAS), we could team up and realize this together.

Multitple companies were already interested in using OSS as corporate Search Engine, but lack of ACLs they didn't implement it. This Feature could attract more entities to OSS - I guess.

best regards

Andy

Am 23.10.2019 um 10:18 schrieb KKIMONK notifications@github.com<mailto:notifications@github.com>:

Hello, I have a question about security management with OSS. How is it managed? I take an example, I'm using OSS like enterprise search engine on a server and from an user workstations under Windows, the requests are made either under a browser or under the windows explorer. Are rights and windows ACLs inherited by OSS ? In other words, when I make a query search, does the result provided by OSS respect the security set up (rights and ACLs?) Help would be appreciated? Kader

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHubhttps://github.com/opensemanticsearch/open-semantic-search-doc/issues/7?email_source=notifications&email_token=AGHTGF4X54NXQOGVRGMLNNDQQACE3A5CNFSM4JD5UHT2YY3PNVWWK3TUL52HS4DFUVEXG43VMWVGG33NNVSW45C7NFSM4HTXUG4A, or unsubscribehttps://github.com/notifications/unsubscribe-auth/AGHTGF2KBZ4AGYWCRLNNIC3QQACE3ANCNFSM4JD5UHTQ.