Merge pull request #17775 from kenrowland/HPCC-30200

HPCC-30200 HpccInternal scope should be accessible by HPCC Admins Reviewed-By: Russ Whitehead <[email protected]> Merged-by: Gavin Halliday <[email protected]>
hpcc-systems · Sep 15, 2023 · 1bba010 · 1bba010
2 parents f49ad74 + 3f39ca5
commit 1bba010
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/system/security/LdapSecurity/ldapsecurity.cpp b/system/security/LdapSecurity/ldapsecurity.cpp
@@ -1023,7 +1023,7 @@ SecAccessFlags CLdapSecManager::authorizeFileScope(ISecUser & user, const char *
         StringBuffer userName;
         for (const char * p = &filescope[m_hpccInternalScope.length()]; *p && *p != ':'; p++)//extract scope username
             userName.append(*p);
-        if(strieq(userName.str(), user.getName()))
+        if(strieq(userName.str(), user.getName()) || isSuperUser(&user))
             return SecAccess_Full;
         PROGLOG("Access denied to scope %s for user %s", filescope, user.getName());
         return SecAccess_None;