[ https://issues.apache.org/jira/browse/SOLR-15828?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Timothy Potter resolved SOLR-15828. ----------------------------------- Fix Version/s: main (9.0) 8.11.1 Resolution: Fixed > Default permissions created when using bin/solr auth should agree with checks > in security UI > -------------------------------------------------------------------------------------------- > > Key: SOLR-15828 > URL: https://issues.apache.org/jira/browse/SOLR-15828 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Reporter: Timothy Potter > Assignee: Timothy Potter > Priority: Major > Fix For: main (9.0), 8.11.1 > > Time Spent: 40m > Remaining Estimate: 0h > > When I enable security using: > {code} > bin/solr auth enable -type basicAuth -prompt true -z localhost:2181 > -blockUnknown true > {code} > Then the security UI reports warnings: > {code} > config-read is not protected! In general, if you protect config-edit, you > should also protect config-read > collection-admin-read is not protected! In general, if you protect > collection-admin-edit, you should also protect collection-admin-read > core-admin-read is not protected! In general, if you protect > core-admin-edit, you should also protect core-admin-read > The 'all' permission is not configured! In general, you should assign the > 'all' permission to an admin role and list it as the last permission in your > config. > {code} > Out of the box, the default permissions should not generate warnings. -- This message was sent by Atlassian Jira (v8.20.1#820001) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org For additional commands, e-mail: issues-h...@solr.apache.org