[ https://issues.apache.org/jira/browse/SOLR-8440?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16007346#comment-16007346 ]
Jan Høydahl commented on SOLR-8440: ----------------------------------- bq. Actually, I found it quite difficult to test the changes I've introduced to SolrCLI Guess I was thinking more along the lines of simple unit tests that tests {{updateIncludeFileEnableAuth()}}, {{updateIncludeFileDisableAuth()}} and perhaps factor out more code in testable methods. Haven't checked very hard, but it should be possible to add another tests to {{BasicAuthIntegrationTest}} that instead of explicitly uploading the hardcoded security.json, programatically instantiates {{AuthTool}} and calls enable, then later in the test verify that you need to authenticate. You could then test disable and -blockUnknown afterwards in the same test, and we'd exercise much of the new functionality? > Script support for enabling basic auth > -------------------------------------- > > Key: SOLR-8440 > URL: https://issues.apache.org/jira/browse/SOLR-8440 > Project: Solr > Issue Type: New Feature > Components: scripts and tools > Reporter: Jan Høydahl > Assignee: Ishan Chattopadhyaya > Labels: authentication, security > Fix For: 6.6, master (7.0) > > Attachments: SOLR-8440-follow-up.patch, SOLR-8440.patch, > SOLR-8440.patch, SOLR-8440.patch, SOLR-8440.patch, SOLR-8440.patch, > SOLR-8440.patch, SOLR-8440.patch, SOLR-8440.patch > > > Now that BasicAuthPlugin will be able to work without an AuthorizationPlugin > (SOLR-8429), it would be sweet to provide a super simple way to "Password > protect Solr"™ right from the command line: > {noformat} > bin/solr basicAuth -adduser -user solr -pass SolrRocks > {noformat} > It would take the mystery out of enabling one single password across the > board. The command would do something like this > # Check if HTTPS is enabled, and if not, print a friendly warning > # Check if {{/security.json}} already exists > ## NO => create one with only plugin class defined > ## YES => Abort if exists but plugin is not {{BasicAuthPlugin}} > # Using security REST API, add the new user -- This message was sent by Atlassian JIRA (v6.3.15#6346) --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org