RE: post.jar with security.json
FYI After some time, we revisited this issue, and found that post.jar *DOES* work with security.json after all. My test of whether or not it would work happened to have a typo in the port number; and I misinterpreted the error message as an erroneous indication that post.jar would not work with security.json -- as it turns out, it *DOES* work Sorry for the confusion -Original Message- From: Upayavira [mailto:u...@odoko.co.uk] Sent: Tuesday, December 29, 2015 2:11 PM To: solr-user@lucene.apache.org Subject: Re: post.jar with security.json You will probably find that the SimplePostTool (aka post.jar) has not been updated to take into account security.json functionality. Thus, the way to do this would be to look at the source code (it will just use SolrJ to connect to Solr) and make enhancements to get it to work (or if you're not familiar with Java, get someone else to do it). Unfortunately, that is the nature of open source - there's so many such features that *could* be extended, they tend to get the feature when someone actually needs it. Upayavira On Tue, Dec 29, 2015, at 06:14 PM, Oakley, Craig (NIH/NLM/NCBI) [C] wrote: > I do have authorization and authentication setup in security.json: the > question is how to pass the login and password into post.jar and/or into > solr-5.4.0/bin/post -- it does not seem to like the > user:pswd@host:8983/solr/corename/update syntax from SOLR-5960: when I > try that, it complains "SimplePostTool: FATAL: Connection error (is Solr > running at http://user:pswd@hostname:8983/solr/five4a/update ?): > java.net.ConnectException: Connection refused", and nothing shows up in > solr.log (although I do set > log4j.logger.org.eclipse.jetty.server.Server=DEBUG to check for 401 > errors, etc). > > FYI, I get a 404 from the link you sited: perhaps I don't have access, or > perhaps you meant > https://lucidworks.com/blog/2015/08/17/securing-solr-basic-auth-permission-rules > (although that doesn't mention post.jar) > > -Original Message- > From: esther.quan...@lucidworks.com > [mailto:esther.quan...@lucidworks.com] > Sent: Tuesday, December 29, 2015 12:54 PM > To: solr-user@lucene.apache.org > Subject: Re: post.jar with security.json > > Hi Craig, > > To pass the username and password, you'll want to enable authorization > and authentication in security.json as is mentioned in this blog post in > step 1 of "Enabling Basic Authentication". > > https://lucidworks.com/blog/2015/08/17/securing-solr-basic-auth--rules/ > > Is this what you're looking for? > > Thanks, > > Esther Quansah > > > Le 29 déc. 2015 à 12:24, Oakley, Craig (NIH/NLM/NCBI) [C] > > a écrit : > > > > Or to put it another way, how does one get security.json to work with > > SOLR-5960? > > > > Has anyone any suggestions? > > > > -Original Message- > > From: Oakley, Craig (NIH/NLM/NCBI) [C] > > Sent: Thursday, December 24, 2015 2:12 PM > > To: 'solr-user@lucene.apache.org' > > Subject: post.jar with security.json > > > > In the old jetty-based implementation of Basic Authentication, one could > > use post.jar by running something like > > > > java -Durl="http://user:pswd@host:8983/solr/corename/update"; > > -Dtype=application/xml -jar post.jar example.xml > > > > By what mechanism does one pass in the user name and password to post.jar > > (or, I suppose more likely, to solr-5.4.0/bin/post) when using > > security.json? > > > > Thanks
Re: post.jar with security.json
You will probably find that the SimplePostTool (aka post.jar) has not been updated to take into account security.json functionality. Thus, the way to do this would be to look at the source code (it will just use SolrJ to connect to Solr) and make enhancements to get it to work (or if you're not familiar with Java, get someone else to do it). Unfortunately, that is the nature of open source - there's so many such features that *could* be extended, they tend to get the feature when someone actually needs it. Upayavira On Tue, Dec 29, 2015, at 06:14 PM, Oakley, Craig (NIH/NLM/NCBI) [C] wrote: > I do have authorization and authentication setup in security.json: the > question is how to pass the login and password into post.jar and/or into > solr-5.4.0/bin/post -- it does not seem to like the > user:pswd@host:8983/solr/corename/update syntax from SOLR-5960: when I > try that, it complains "SimplePostTool: FATAL: Connection error (is Solr > running at http://user:pswd@hostname:8983/solr/five4a/update ?): > java.net.ConnectException: Connection refused", and nothing shows up in > solr.log (although I do set > log4j.logger.org.eclipse.jetty.server.Server=DEBUG to check for 401 > errors, etc). > > FYI, I get a 404 from the link you sited: perhaps I don't have access, or > perhaps you meant > https://lucidworks.com/blog/2015/08/17/securing-solr-basic-auth-permission-rules > (although that doesn't mention post.jar) > > -Original Message- > From: esther.quan...@lucidworks.com > [mailto:esther.quan...@lucidworks.com] > Sent: Tuesday, December 29, 2015 12:54 PM > To: solr-user@lucene.apache.org > Subject: Re: post.jar with security.json > > Hi Craig, > > To pass the username and password, you'll want to enable authorization > and authentication in security.json as is mentioned in this blog post in > step 1 of "Enabling Basic Authentication". > > https://lucidworks.com/blog/2015/08/17/securing-solr-basic-auth--rules/ > > Is this what you're looking for? > > Thanks, > > Esther Quansah > > > Le 29 déc. 2015 à 12:24, Oakley, Craig (NIH/NLM/NCBI) [C] > > a écrit : > > > > Or to put it another way, how does one get security.json to work with > > SOLR-5960? > > > > Has anyone any suggestions? > > > > -Original Message- > > From: Oakley, Craig (NIH/NLM/NCBI) [C] > > Sent: Thursday, December 24, 2015 2:12 PM > > To: 'solr-user@lucene.apache.org' > > Subject: post.jar with security.json > > > > In the old jetty-based implementation of Basic Authentication, one could > > use post.jar by running something like > > > > java -Durl="http://user:pswd@host:8983/solr/corename/update"; > > -Dtype=application/xml -jar post.jar example.xml > > > > By what mechanism does one pass in the user name and password to post.jar > > (or, I suppose more likely, to solr-5.4.0/bin/post) when using > > security.json? > > > > Thanks
RE: post.jar with security.json
I do have authorization and authentication setup in security.json: the question is how to pass the login and password into post.jar and/or into solr-5.4.0/bin/post -- it does not seem to like the user:pswd@host:8983/solr/corename/update syntax from SOLR-5960: when I try that, it complains "SimplePostTool: FATAL: Connection error (is Solr running at http://user:pswd@hostname:8983/solr/five4a/update ?): java.net.ConnectException: Connection refused", and nothing shows up in solr.log (although I do set log4j.logger.org.eclipse.jetty.server.Server=DEBUG to check for 401 errors, etc). FYI, I get a 404 from the link you sited: perhaps I don't have access, or perhaps you meant https://lucidworks.com/blog/2015/08/17/securing-solr-basic-auth-permission-rules (although that doesn't mention post.jar) -Original Message- From: esther.quan...@lucidworks.com [mailto:esther.quan...@lucidworks.com] Sent: Tuesday, December 29, 2015 12:54 PM To: solr-user@lucene.apache.org Subject: Re: post.jar with security.json Hi Craig, To pass the username and password, you'll want to enable authorization and authentication in security.json as is mentioned in this blog post in step 1 of "Enabling Basic Authentication". https://lucidworks.com/blog/2015/08/17/securing-solr-basic-auth--rules/ Is this what you're looking for? Thanks, Esther Quansah > Le 29 déc. 2015 à 12:24, Oakley, Craig (NIH/NLM/NCBI) [C] > a écrit : > > Or to put it another way, how does one get security.json to work with > SOLR-5960? > > Has anyone any suggestions? > > -Original Message- > From: Oakley, Craig (NIH/NLM/NCBI) [C] > Sent: Thursday, December 24, 2015 2:12 PM > To: 'solr-user@lucene.apache.org' > Subject: post.jar with security.json > > In the old jetty-based implementation of Basic Authentication, one could use > post.jar by running something like > > java -Durl="http://user:pswd@host:8983/solr/corename/update"; > -Dtype=application/xml -jar post.jar example.xml > > By what mechanism does one pass in the user name and password to post.jar > (or, I suppose more likely, to solr-5.4.0/bin/post) when using security.json? > > Thanks
Re: post.jar with security.json
Hi Craig, To pass the username and password, you'll want to enable authorization and authentication in security.json as is mentioned in this blog post in step 1 of "Enabling Basic Authentication". https://lucidworks.com/blog/2015/08/17/securing-solr-basic-auth--rules/ Is this what you're looking for? Thanks, Esther Quansah > Le 29 déc. 2015 à 12:24, Oakley, Craig (NIH/NLM/NCBI) [C] > a écrit : > > Or to put it another way, how does one get security.json to work with > SOLR-5960? > > Has anyone any suggestions? > > -Original Message- > From: Oakley, Craig (NIH/NLM/NCBI) [C] > Sent: Thursday, December 24, 2015 2:12 PM > To: 'solr-user@lucene.apache.org' > Subject: post.jar with security.json > > In the old jetty-based implementation of Basic Authentication, one could use > post.jar by running something like > > java -Durl="http://user:pswd@host:8983/solr/corename/update"; > -Dtype=application/xml -jar post.jar example.xml > > By what mechanism does one pass in the user name and password to post.jar > (or, I suppose more likely, to solr-5.4.0/bin/post) when using security.json? > > Thanks
RE: post.jar with security.json
Or to put it another way, how does one get security.json to work with SOLR-5960? Has anyone any suggestions? -Original Message- From: Oakley, Craig (NIH/NLM/NCBI) [C] Sent: Thursday, December 24, 2015 2:12 PM To: 'solr-user@lucene.apache.org' Subject: post.jar with security.json In the old jetty-based implementation of Basic Authentication, one could use post.jar by running something like java -Durl="http://user:pswd@host:8983/solr/corename/update"; -Dtype=application/xml -jar post.jar example.xml By what mechanism does one pass in the user name and password to post.jar (or, I suppose more likely, to solr-5.4.0/bin/post) when using security.json? Thanks
post.jar with security.json
In the old jetty-based implementation of Basic Authentication, one could use post.jar by running something like java -Durl="http://user:pswd@host:8983/solr/corename/update"; -Dtype=application/xml -jar post.jar example.xml By what mechanism does one pass in the user name and password to post.jar (or, I suppose more likely, to solr-5.4.0/bin/post) when using security.json? Thanks