Hi Geert,
Url-rewriting is not enabled. I wouldn't expect that to be the cause if adding admin permission makes the site available. I executed a script that runs through each document and directory uri in the pertinent modules database to make it accessible, but it's worth checking the pertinent directory and document URI permissions using something like QConsole (tomorrow). I did check the user for the executor role. Thanks for the ideas! Tim From: [email protected] [mailto:[email protected]] On Behalf Of Geert Josten Sent: Thursday, November 08, 2012 1:30 AM To: MarkLogic Developer Discussion Subject: Re: [MarkLogic Dev General] Setting up user roles in ML 6.0 for http access Hi Tim, Did you by any chance switch to using url-rewriting? That runs with the app-server default user, typically 'nobody'. The 404 indicates the main module can't be found. Have you inspected the permissions on that module document in its Modules database using something like QConsole? If that looks okay, did you check that the user you use to login to MarkLogic really has the executor role? Kind regards, Geert Van: [email protected] [mailto:[email protected]] Namens Tim Meagher Verzonden: donderdag 8 november 2012 4:10 Aan: 'General MarkLogic Developer Discussion' Onderwerp: [MarkLogic Dev General] Setting up user roles in ML 6.0 for http access Hi Folks, In MarkLogic 4.2 I created and configured executor, reader, inserter, and updater security roles and also an http security role that includes xdmp:add-response-header. Next I created a user that includes all of these roles without an admin role that is able to access xquery-generated web pages for a particular application. I tried porting my app to ML 6.0 using all the same roles and went as far as ensuring that all modules and content have the appropriate permissions using the following for each uri: xdmp:document-add-permissions($uri, ( xdmp:permission("reader", "read"), xdmp:permission("inserter", "insert"), xdmp:permission("executor", "execute"), xdmp:permission("updater", "update") )) However, I'm still getting a 404 error running on ML 6.0 unless I login with an admin user. I'm probably missing something with ML 6. Is there a list of necessary role permissions to be applied for a reader, executor, inserter, and updater? Is there any special configuration for the modules and/or content databases and http app servers in ML 6 for such users? Thank you! Tim Meagher
_______________________________________________ General mailing list [email protected] http://developer.marklogic.com/mailman/listinfo/general
