RE: Programmatic Basic Auth on CloudSolrClient

; Sent: 05 March 2021 04:23 AM To: solr-user@lucene.apache.org<mailto:solr-user@lucene.apache.org> Subject: Re: Programmatic Basic Auth on CloudSolrClient Ah, right, now I remember that something like this was possible with the "http1" version of the clients, which is why I created t

Re: Programmatic Basic Auth on CloudSolrClient

Ah, right, now I remember that something like this was possible with the "http1" version of the clients, which is why I created the Jira issues for the http2 ones. Maybe you can even skip the "LBHttpSolrClient" step, I believe you can just pass the HttpClient to the CloudSolrClient? you will have t

Re: Programmatic Basic Auth on CloudSolrClient

On Wed, Mar 03, 2021 at 10:34:50AM -0800, Tomás Fernández Löbbe wrote: > As far as I know the current OOTB options are system properties or > per-request (which would allow you to use different per collection, but > probably not ideal if you do different types of requests from different > parts of

RE: Programmatic Basic Auth on CloudSolrClient

Thanks. This would be very helpful. From: Tomás Fernández Löbbe<mailto:tomasflo...@gmail.com> Sent: 04 March 2021 12:32 AM To: solr-user@lucene.apache.org<mailto:solr-user@lucene.apache.org> Subject: Re: Programmatic Basic Auth on CloudSolrClient Maybe something like this (I omit

Re: Programmatic Basic Auth on CloudSolrClient

configure the client > with your workaround? > > From: Tomás Fernández Löbbe<mailto:tomasflo...@gmail.com> > Sent: 04 March 2021 12:05 AM > To: solr-user@lucene.apache.org<mailto:solr-user@lucene.apache.org> > Subject: Re: Programmatic Basic Auth on CloudSolrClient &g

RE: Programmatic Basic Auth on CloudSolrClient

Hi Thomas, Thanks. Can you please also share a sample of code to configure the client with your workaround? From: Tomás Fernández Löbbe<mailto:tomasflo...@gmail.com> Sent: 04 March 2021 12:05 AM To: solr-user@lucene.apache.org<mailto:solr-user@lucene.apache.org> Subject: Re: Progra

Re: Programmatic Basic Auth on CloudSolrClient

As far as I know the current OOTB options are system properties or per-request (which would allow you to use different per collection, but probably not ideal if you do different types of requests from different parts of your code). A workaround (which I've used in the past) is to have a custom clie

Programmatic Basic Auth on CloudSolrClient

Hi There, Is there any way to programmatically set basic authentication credential on CloudSolrClient? The only documentation available is to use system property. This is not useful if two collection required two separate set of credentials and they are parallelly accessed. Thanks in advance.

Re: CloudSolrClient - basic auth - multi shard collection

2 - both of those > bugs are fixed in that version. > > Hope that helps, > > Jason > > > On Mon, Nov 18, 2019 at 8:26 AM Nicolas Paris > wrote: > > > > Hello, > > > > I am having trouble with basic auth on a solrcloud instance. When the >

Re: CloudSolrClient - basic auth - multi shard collection

ose issues that might help you. If those aren't sufficient, you can fix the issue by upgrading to 8.2 - both of those bugs are fixed in that version. Hope that helps, Jason On Mon, Nov 18, 2019 at 8:26 AM Nicolas Paris wrote: > > Hello, > > I am having trouble with basic auth on

CloudSolrClient - basic auth - multi shard collection

Hello, I am having trouble with basic auth on a solrcloud instance. When the collection is only one shard, there is no problem. When the collection is multiple shard, there is no problem until I ask multiple query concurrently: I get 401 error and asking for credentials for concurrent queries. I

Re: Problems with restricting access to users using Basic auth

Yeah, it beats me. If you've made sure that the security.json in ZooKeeper is exactly the same as the one I posted but you're still getting different results, then I'm stumped. Maybe someone else here has an idea. Out of curiosity, are you setting your security.json via the authentication/author

Re: Problems with restricting access to users using Basic auth

Hi Jason, Apologies for the late reply. My laptop was broken and I got it today from service centre. I am still having issues with solr-user able to view the Collections list as follow. Testing permissions for user [solr] Request [/admin/collections?action=LIST] returned status [200] Req

Re: Problems with restricting access to users using Basic auth

Thanks a lot Jason, I will try this out and let you know. Thanks again. On Wed 28 Aug, 2019, 7:45 PM Jason Gerlowski, wrote: > Hi Salmaan, > > Are you still seeing this behavior, or were you able to figure things out? > > I just got a chance to try out the security.json in Solr 7.6 myself, > a

Re: Problems with restricting access to users using Basic auth

Hi Salmaan, Are you still seeing this behavior, or were you able to figure things out? I just got a chance to try out the security.json in Solr 7.6 myself, and I can't reproduce the behavior you're seeing. It might be helpful to level set here. Make sure that our security.json settings and our

Re: Problems with restricting access to users using Basic auth

Hi, Any suggestions as to what can be done? Regards, Salmaan On Wed, Aug 21, 2019 at 4:33 PM Jason Gerlowski wrote: > Ah, ok. SOLR-13355 still affects 7.6, so that explains why you're > seeing this behavior. > > You could upgrade to get the new behavior, but you don't need to- > there's a wo

Re: Problems with restricting access to users using Basic auth

Hi Jason, Unfortunately, the above mentioned workaround does not work for me. I modified your script a little bit as follow and it still doesn't work. {"name": "update", "collection": ["collection1", "collection2"], "role": "dev"}, {"name": "read", "collection": ["collection1", "collection2"],

Re: Problems with restricting access to users using Basic auth

Ah, ok. SOLR-13355 still affects 7.6, so that explains why you're seeing this behavior. You could upgrade to get the new behavior, but you don't need to- there's a workaround. You just need to add a few extra rules to your security.json. The problem in SOLR-13355 is that the "all" permission is

Re: Problems with restricting access to users using Basic auth

Hi Jason, Is there a way to fix this in version 7.6? Or is it mandatory to upgrade to other versions? If I have to upgrade to a higher version, then what is the best way to do this without effecting the current configuration and indexed data? Thanks, Salmaan On Wed, Aug 21, 2019 at 4:13 PM S

Re: Problems with restricting access to users using Basic auth

Hi Jason, I am using version 7.6 of Solr. Thanks, Salmaan On Wed, Aug 21, 2019 at 4:12 PM Jason Gerlowski wrote: > The "all" permissions _should_ block solr-user from accessing all of > those resources, and I believe it does in newer versions of Solr. > There was a bug with it that was fixed

Re: Problems with restricting access to users using Basic auth

The "all" permissions _should_ block solr-user from accessing all of those resources, and I believe it does in newer versions of Solr. There was a bug with it that was fixed a few versions back though- it sounds like you might be running into that. (see https://issues.apache.org/jira/browse/SOLR-13

Re: Problems with restricting access to users using Basic auth

Hi Jason, Thanks for your prompt reply. Your code does address few of my concerns like restricting *solr-user* from accessing the dashboard and from executing other request methods apart from *"update"* and *"read"*. But I am still able to access other collections such as *"Collection3", "Collec

Re: Problems with restricting access to users using Basic auth

Hi Salmaan, Solr's RuleBasedAuthorizationPlugin allows requests through if none of the specified permissions apply. I think that's what you're running into in your example above. If you want to lockdown a particular API (or set of APIs) then you need to explicitly add a permission that restricts

Problems with restricting access to users using Basic auth

Hi Solr Users, I want to create a user that has restricted access to Solr. I did the follwowing:- 1. { 2. "authentication":{ 3."blockUnknown": true, 4."class":"solr.BasicAuthPlugin", 5."credentials":{ 6. "solr-admin": "2IUJD9dxRhxSXaJGdMP5z8ggSn4I285Ty9GCWeRNMUg=

Re: How to use Parallel SQL Interface when basic auth is enabled on Solr cluster

Pretty sure you are running into https://issues.apache.org/jira/browse/SOLR-8213 Always looking for patches to help improve things :) Kevin Risden On Wed, Jul 24, 2019 at 4:50 AM Suril Shah wrote: > Hi, > I am using Solr Version 7.6.0 where Basic Authentication is enabled. I am > trying to us

How to use Parallel SQL Interface when basic auth is enabled on Solr cluster

Hi, I am using Solr Version 7.6.0 where Basic Authentication is enabled. I am trying to use Parallel SQL to run some SQL queries. This is the code snippet that I am using to connect to Solr and run some SQL queries on it. This works when authentication is not enabled on the Solr cluster. publi

Re: Basic auth and index replication

raise a JIRA ticket for this issue? > > Thanks, > > Dwane > > From: Dwane Hall > Sent: Wednesday, 3 April 2019 7:15 PM > To: solr-user@lucene.apache.org > Subject: Basic auth and index replication > > Hey Solr community. >

Re: Basic auth and index replication

auth and index replication Hey Solr community. I’ve been following a couple of open JIRA tickets relating to use of the basic auth plugin in a Solr cluster (https://issues.apache.org/jira/browse/SOLR-12584 , https://issues.apache.org/jira/browse/SOLR-12860) and recently I’ve noticed similar

Re: Set Basic Auth to CloudSolrStream

search solution architect Cominvent AS - www.cominvent.com > 15. apr. 2019 kl. 13:59 skrev Novin Novin : > > Hi > > How can I set basic auth for CloudSolrStream? I couldn't find any > documentation. Can someone please point me in the right direction? > > Thanks in advance, > Navin

Set Basic Auth to CloudSolrStream

Hi How can I set basic auth for CloudSolrStream? I couldn't find any documentation. Can someone please point me in the right direction? Thanks in advance, Navin

Basic auth and index replication

Hey Solr community. I’ve been following a couple of open JIRA tickets relating to use of the basic auth plugin in a Solr cluster (https://issues.apache.org/jira/browse/SOLR-12584 , https://issues.apache.org/jira/browse/SOLR-12860) and recently I’ve noticed similar behaviour when adding tlog

Re: Basic Auth Permission

What Noble Paul says is true: Solr can't - directly - restrict access to static files. However, if you set your file repository's permissions to a minimal level (so, for example, users can't do a directory search), then they must know the precise name and location of the file they're trying to ret

Re: Basic Auth Permission

You can't restrict access to static files. You can only restrict access to Solr content. However you can use the "blockUnknown" property in your security.json to restrict access to all files https://lucene.apache.org/solr/guide/7_5/basic-authentication-plugin.html --Noble On Sat, Jun 9, 2018 at

Re: Basic Auth Permission

Authentication does work and authorization for general is working fine. But nothing authorization works when specified certain collection. That's so frustrating. It is weird that even I just do simple "path":"/*" won't do anything if I add "collection":"a". -- Sent from: http://lucene.472066.n3.

Re: Basic Auth Permission

I run on Solr cloud 7.2.1 Sent from my mobile. Please excuse any typos. > On Dec 4, 2018, at 2:57 PM, Terry Steichen wrote: > > I think there's been some confusion on which standalone versions support > authentication. I'm using 6.6 in cloud mode (purely so the > authentication will work). So

Re: Basic Auth Permission

I think there's been some confusion on which standalone versions support authentication.  I'm using 6.6 in cloud mode (purely so the authentication will work).  Some of the documentation seems to say that only cloud implementations support it, but others (like the experts on this forum) say that la

Re: Basic Auth Permission

I am using standalone Solr 7.4.0. Are you using cloud or standalone? Not sure if that cause the problem or not. -- Sent from: http://lucene.472066.n3.nabble.com/Solr-User-f472068.html

Re: Basic Auth Permission

What Solr version are you using? On 12/4/18 2:47 PM, yydpkm wrote: > Thank you for your replay. I use your format and failed. User2 can still > visit collection "name" > Could that because I am using standalone Solr not Solrcloud? > > > > -- > Sent from: http://lucene.472066.n3.nabble.com/Solr-Us

Re: Basic Auth Permission

I tried to replace "/select" with "/*" but user B can still access collection A. "permissions":[ { "name":"security-edit", "role":"admin", "index":1}, { "name":"PermA", "collection":CollectionA"", "path":"/*", "role":["ReadColl

Re: Basic Auth Permission

Thank you for your replay. I use your format and failed. User2 can still visit collection "name" Could that because I am using standalone Solr not Solrcloud? -- Sent from: http://lucene.472066.n3.nabble.com/Solr-User-f472068.html

Re: Basic Auth Permission

Hi Rick, This is how I was able to restrict permissions to user-role ( user1 ) to its own collection. Hopefully it helps. "permissions": [ {"name": "*", "path": "/dataimport", "params": {"command": ["status"]}, "role": "*"}, {"collection": "name", "path": "/admin/file", "role": ["us

Re: Basic Auth Permission

In setting his permission, Antony said he set "path": "/admin/file".  I use "path":"/*" - that may be too restrictive for you, but it works fine (for me). On 12/4/18 9:55 AM, yydpkm wrote: > Hi Antony, > > Have you solved this? I am facing the same thing. Other users can still do > /select after

Re: Basic Auth Permission

Hi Antony, Have you solved this? I am facing the same thing. Other users can still do /select after I set the permission path and collection. Best, Rick -- Sent from: http://lucene.472066.n3.nabble.com/Solr-User-f472068.html

Re: Solr basic auth

m > > > 21. jun. 2018 kl. 17:47 skrev Dinesh Sundaram : > > > > thanks for your valuable feedback. I really want to allow this domain > > without any credentials. i need basic auth only if anyone access the solr > > url directly. so no option in solr to do that? > &

Re: Solr basic auth

search solution architect Cominvent AS - www.cominvent.com > 21. jun. 2018 kl. 17:47 skrev Dinesh Sundaram : > > thanks for your valuable feedback. I really want to allow this domain > without any credentials. i need basic auth only if anyone access the solr > url directly. so no option

Re: Solr basic auth

thanks for your valuable feedback. I really want to allow this domain without any credentials. i need basic auth only if anyone access the solr url directly. so no option in solr to do that? On Sun, Jun 17, 2018 at 4:18 PM, Jan Høydahl wrote: > Of course, but Dinesh explicitly set blockUnkn

Re: Solr basic auth

gt; >> Jan >> >> Sendt fra min iPhone >> >>> 14. jun. 2018 kl. 22:24 skrev Dinesh Sundaram : >>> >>> Hi, >>> >>> I have configured basic auth for solrcloud. it works well when i access the >>> solr url directly. i have

Re: Solr basic auth

d credentials. > > Are you asking for a feature where a request is authenticated based on IP > address of the client, not username/password? > > Jan > > Sendt fra min iPhone > >> 14. jun. 2018 kl. 22:24 skrev Dinesh Sundaram : >> >> Hi, >> >&g

Re: Solr basic auth

t; > I have configured basic auth for solrcloud. it works well when i access the > solr url directly. i have integrated this solr with test.com domain. now if > I access the solr url like test.com/solr it prompts the credentials but I > dont want to ask this time since it is known dom

Solr basic auth

Hi, I have configured basic auth for solrcloud. it works well when i access the solr url directly. i have integrated this solr with test.com domain. now if I access the solr url like test.com/solr it prompts the credentials but I dont want to ask this time since it is known domain. is there any

Basic Auth Permission

Hello, I am trying to get the path/params restricted to users of individual collection through Solr UI. Here is the permission that I have for an user. {"collection": "collection_name", "path": "/admin/file", "role": [" collection_user"]} I am still not able to restrict another user from access

Re: How to do CDCR with basic auth?

i, May 19, 2017 at 3:03 PM Shawn Feldman > wrote: > >> I have the same exact issue on my box. Basic auth works in 6.4.2 but >> fails in 6.5.1. I assume its a bug. probably just hasn't been >> acknowledged yet. >> >> On

Re: How to do CDCR with basic auth?

i added a ticket https://issues.apache.org/jira/browse/SOLR-10718 we'll see what happens On Fri, May 19, 2017 at 3:03 PM Shawn Feldman wrote: > I have the same exact issue on my box. Basic auth works in 6.4.2 but > fails in 6.5.1. I assume its a bug. probably just

Re: How to do CDCR with basic auth?

I have the same exact issue on my box. Basic auth works in 6.4.2 but fails in 6.5.1. I assume its a bug. probably just hasn't been acknowledged yet. On Sun, May 14, 2017 at 2:37 PM Xie, Sean wrote: > Configured the JVM: > > -Dsolr.httpclient.b

Re: How to do CDCR with basic auth?

? Thanks Sean On 5/14/17, 3:09 PM, "Xie, Sean" wrote: So I have configured two clusters (source and target) with basic auth with solr:SolrRocks, but when starting the source node, log is showing it couldn’t read the authentication info. I already added the –Dbasicauth=solr

How to do CDCR with basic auth?

So I have configured two clusters (source and target) with basic auth with solr:SolrRocks, but when starting the source node, log is showing it couldn’t read the authentication info. I already added the –Dbasicauth=solr:SolrRocks to the JVM of the solr instance. Not sure where else I can

Re: Basic Auth for Solr Streaming Expressions

Thanks Sandeep! Kevin Risden On Wed, Nov 16, 2016 at 3:33 PM, sandeep mukherjee < wiredcit...@yahoo.com.invalid> wrote: > [SOLR-9779] Basic auth in not supported in Streaming Expressions - ASF JIRA > > | > | > | > | || > >| > > | > | > | |

Re: Basic Auth for Solr Streaming Expressions

[SOLR-9779] Basic auth in not supported in Streaming Expressions - ASF JIRA | | | | || | | | | | [SOLR-9779] Basic auth in not supported in Streaming Expressions - ASF JIRA | | | | I have created the above jira ticket for the base auth support in solr

Re: Basic Auth for Solr Streaming Expressions

e is a way to set the SolrClientCache object > which > > keep reference to all the CloudSolrClient where I can set a reference to > > HttpClient which sets the Basic Auth header. However the problem is, > inside > > the SolrClientCache there is no way to set y

Re: Basic Auth for Solr Streaming Expressions

ntCache object > which > > keep reference to all the CloudSolrClient where I can set a reference to > > HttpClient which sets the Basic Auth header. However the problem is, > inside > > the SolrClientCache there is no way to set your own version of > > CloudSolrClient wi

Re: Basic Auth for Solr Streaming Expressions

eamContext object there is a way to set the SolrClientCache object which > keep reference to all the CloudSolrClient where I can set a reference to > HttpClient which sets the Basic Auth header. However the problem is, inside > the SolrClientCache there is no way to set your own version

Re: Basic Auth for Solr Streaming Expressions

I have more progress since my last mail. I figured out that  in the StreamContext object there is a way to set the SolrClientCache object which keep reference to all the CloudSolrClient where I can set a reference to HttpClient which sets the Basic Auth header. However the problem is, inside

Basic Auth for Solr Streaming Expressions

Hello everyone, I trying to find the documentation for Basic Auth plugin for Solr Streaming expressions. But I'm not able to find it in the documentation anywhere. Could you please point me in right direction of how to enable Basic auth for Solr Streams? I'm creating StreamFactory as

SolrCloud + Basic Auth : Runtime error in periodic deletion of expired docs

Hello, I need to secure solr, no access allowed except for user solr, so I tried to set-up authentication & authorization. Everything seems to work fine, only solr user can read or modify a collection, but every 5 minutes this error appears in the log file of 1 instance. 2016-07-07 16:57:52,075

SolrCloud + Basic Auth : Runtime error in periodic deletion of expired docs

Hello, I need to secure solr, no access allowed except for user solr, so I tried to set-up authentication & authorization. Everything seems to work fine, only solr user can read or modify a collection, but every 5 minutes this error appears in the log file of 1 instance. 2016-07-07 16:57:52,075

Re: API accessible without authentication even though Basic Auth Plugin is enabled

On 12/22/2015 11:45 PM, William Bell wrote: > Why would someone stay on 5.3.x instead of upgrading to 5.4? Why backport > when you can just upgrade? We just had this same discussion on the dev list. Anshum wants to cut a 5.3.2 release, somebody asked the same thing you did, and this is what I wro

Re: API accessible without authentication even though Basic Auth Plugin is enabled

> > > > > -- > > View this message in context: > > > http://lucene.472066.n3.nabble.com/API-accessible-without-authentication-even-though-Basic-Auth-Plugin-is-enabled-tp4244940p4246099.html > > Sent from the Solr - User mailing list archive at Nabble.com. > > > -- Bill Bell billnb...@gmail.com cell 720-256-8076

Re: API accessible without authentication even though Basic Auth Plugin is enabled

4.0, didn't work in 5.3.1, s. > https://issues.apache.org/jira/browse/SOLR-8408 > > > > -- > View this message in context: > http://lucene.472066.n3.nabble.com/API-accessible-without-authentication-even-though-Basic-Auth-Plugin-is-enabled-tp4244940p4246099.html > Sent from the Solr - User mailing list archive at Nabble.com. >

Re: API accessible without authentication even though Basic Auth Plugin is enabled

ssible-without-authentication-even-though-Basic-Auth-Plugin-is-enabled-tp4244940p4246099.html Sent from the Solr - User mailing list archive at Nabble.com.

Re: API accessible without authentication even though Basic Auth Plugin is enabled

ly-To: solr-user@lucene.apache.org > : To: solr-user@lucene.apache.org > : Subject: API accessible without authentication even though Basic Auth Plugin > : is enabled > : > : Hi, > : > : I noticed that it is possible to access the API even if the Basic Auth > plugin is

Re: API accessible without authentication even though Basic Auth Plugin is enabled

e.org : Subject: API accessible without authentication even though Basic Auth Plugin : is enabled : : Hi, : : I noticed that it is possible to access the API even if the Basic Auth plugin is enabled. Is that a known issue/done on purpose? I didn’t find anything in JIRA or the docs. : : What

API accessible without authentication even though Basic Auth Plugin is enabled

Hi, I noticed that it is possible to access the API even if the Basic Auth plugin is enabled. Is that a known issue/done on purpose? I didn’t find anything in JIRA or the docs. What I did: - Started zookeeper on port 2181 and uploaded security.json from https://cwiki.apache.org/confluence

Re: Passing Basic Auth info to HttpSolrClient

In latest Solr release, you can use the basic auth plugins for authentication instead of doing something at the Jetty level. https://cwiki.apache.org/confluence/display/solr/Basic+Authentication+Plugin Right at the end, there's a note on how to use SolrJ with this. Also, there exists:

RE: Passing Basic Auth info to HttpSolrClient

2015 8:13 PM To: solr-user@lucene.apache.org Subject: Re: Passing Basic Auth info to HttpSolrClient Hi, Re-posting to see if anyone can help. If my question is not clear, let me know. Thanks! Steve On Mon, Sep 28, 2015 at 5:15 PM, Steven White wrote: > Hi, > > I'm using Http

Re: Passing Basic Auth info to HttpSolrClient

tty. My question is, how do I pass to > SolrJ the basic auth info. so that I don't get a 401 error? > > Thanks in advance > > Steve >

Passing Basic Auth info to HttpSolrClient

Hi, I'm using HttpSolrClient to connect to Solr. Everything works until when I enabled basic authentication in Jetty. My question is, how do I pass to SolrJ the basic auth info. so that I don't get a 401 error? Thanks in advance Steve

Re: Securing solr 5.2 basic auth permission rules

aded into the classloader with the new jetty modules setup. > > > Marshall Sanders > Technical Lead – Software Engineer > Autotrader.com > 404-568-7130 > > -Original Message- > From: Sanders, Marshall (AT - Atlanta) [mailto: > marshall.sand...@autotrade

RE: Securing solr 5.2 basic auth permission rules

e.org Subject: RE: Securing solr 5.2 basic auth permission rules So the issue is that when it's stated that solr runs on jetty 9 what it really means is that it runs on 5% of jetty9 and the other 95% has been stripped out. (WH! It's only ~13 MB) You'll need to download the ap

RE: Securing solr 5.2 basic auth permission rules

mber 17, 2015 2:28 PM To: solr-user@lucene.apache.org Subject: RE: Securing solr 5.2 basic auth permission rules I'm actually trying to do something similar with 5.3 We're in the process of upgrading from 4.10 and were previously using jaas to secure dih pages and a few others and had

RE: Securing solr 5.2 basic auth permission rules

ith the new jetty9 modules/classloaders it's proving a challenge. Marshall Sanders Technical Lead – Software Engineer Autotrader.com 404-568-7130 -Original Message- From: Aziz Gaou [mailto:gaoua...@gmail.com] Sent: Thursday, September 17, 2015 5:55 AM To: solr-user@lucene.apache.or

Re: Securing solr 5.2 basic auth permission rules

thank you so much for your reply, Now, i try to protect Apache Solr 5 admin with jetty, when I change 1) sudo nano /opt/solr/server/etc/webdefault.xml Solr /* search-role BASIC Solr Realm 2) i changed too "*jetty.xml *

Re: Securing solr 5.2 basic auth permission rules

thank you so much for your reply 2015-09-16 18:58 GMT+00:00 Anshum Gupta : > Basic authentication (and the API support, that you're trying to use) was > only released with 5.3.0 so it wouldn't work with 5.2. > 5.2 only had the authentication and authorization frameworks, and shipped > with Kerber

Re: Securing solr 5.2 basic auth permission rules

Basic authentication (and the API support, that you're trying to use) was only released with 5.3.0 so it wouldn't work with 5.2. 5.2 only had the authentication and authorization frameworks, and shipped with Kerberos authentication plugin out of the box. There are a few known issues with that thou

Fwd: Securing solr 5.2 basic auth permission rules

Hi, I try to follow: https://cwiki.apache.org/confluence/display/solr/Basic+Authentication+Plugin, to protect Solr 5.2 Admin with password, but I have not been able to secure. 1) When I run the following command: curl --user solr:SolrRocks http://localhost:8983/solr/admin/authentication -H 'Cont

Re: How to secure Admin UI with Basic Auth in Solr 5.3.x

gt; wrote: > > > OK, I downgraded to solr 5.2.x > > > > > > Unfortunatelly still no luck. I followed 2 aproaches: > > > > > > 1. Secure it the old fashioned way like described here: > > > > > > http://stackoverflow.com/questions/28

RE: How to secure Admin UI with Basic Auth in Solr 5.3.x

Message- From: Merlin Morgenstern [mailto:merlin.morgenst...@gmail.com] Sent: Friday, September 11, 2015 10:30 AM To: solr-user@lucene.apache.org; noble.p...@gmail.com Subject: Re: How to secure Admin UI with Basic Auth in Solr 5.3.x Thank you for the info. I have already downgraded to 5.2.x as t

Re: How to secure Admin UI with Basic Auth in Solr 5.3.x

e-solr-admin-password > > > > 2. Using the Basic Authentication Plugin like described here: > > http://lucidworks.com/blog/securing-solr-basic-auth-permission-rules/ > > > > Both aproaches created unsolved problems. > > > > While following option 1, I was able t

Re: How to secure Admin UI with Basic Auth in Solr 5.3.x

e described here: > http://lucidworks.com/blog/securing-solr-basic-auth-permission-rules/ > > Both aproaches created unsolved problems. > > While following option 1, I was able to secure the Admin UI with basic > authentication, but no longer able to access my application despite the >

Re: How to secure Admin UI with Basic Auth in Solr 5.3.x

://lucidworks.com/blog/securing-solr-basic-auth-permission-rules/ Both aproaches created unsolved problems. While following option 1, I was able to secure the Admin UI with basic authentication, but no longer able to access my application despite the fact that it was working on solr 3.x with the same

Re: How to secure Admin UI with Basic Auth in Solr 5.3.x

Check this https://cwiki.apache.org/confluence/display/solr/Securing+Solr There a couple of bugs in 5.3.o and a bug fix release is coming up over the next few days. We don't provide any specific means to restrict access to admin UI itself. However we let users specify fine grained ACLs on various

Re: How to secure Admin UI with Basic Auth in Solr 5.3.x

If you are using Linux server you can always iptables to restrict access to solr admin panel. On Sep 9, 2015 3:05 PM, "Merlin Morgenstern" wrote: > I just installed solr cloud 5.3.x and found that the way to secure the amin > ui has changed. Aparently there is a new plugin which does role based >

How to secure Admin UI with Basic Auth in Solr 5.3.x

I just installed solr cloud 5.3.x and found that the way to secure the amin ui has changed. Aparently there is a new plugin which does role based authentification and all info on how to secure the admin UI found on the net is outdated. I do not need role based authentification but just simply want

Re: Basic auth

"Although I'm not sure why you took this approach instead of supporting simple built-in basic auth and let us configure security the "old/easy" way" Going with Jetty basic auth is not useful in a large enough cluster. Where do you store the credentials and how would yo

Re: Basic auth

Thank you, I tested providing my implementation of authentication in security.json, uploaded file to ZK (just considering authentication), started nodes and it worked like a charm. That required of course turning off Jetty basic auth. Although I'm not sure why you took this approach inste

Re: Basic auth

m not clear what your question is. Basic Auth is a well-known standard. We are just implementing that standard. We store all credentials & permissions in ZK . That means it is only as secure as your ZK . As long as nobody can write to ZK, your system is safe On Wed, Jul 22, 2015 at 11:10 PM, Fa

Re: Basic Auth (again)

Hi Steve, We've not yet moved to Solr 5, but we do use Jetty 9. In any case, Basic Auth is a Jetty thing, not a Solr thing. We do use this mechanism to great effect to secure things like index writers and such, and it does work well once it's setup. Jetty, as with all containers, is a

Re: Basic Auth (again)

Not Found Powered by Jetty:// In a previous post, I asked if anyone has setup Solr 5.2.1 or any 5.x with Basic Auth and got it working, I have not heard back. Either this feature is not tested or not in use. If it is not in use, how do folks secure their Solr instance? Thanks Steve O

Re: Basic Auth (again)

Hi Steve, What version of Jetty are you using? Have you got a webdefault.xml in your etc folder? If so, does it have an entry like this: BASIC Realm Name as specified in jetty.xml It's been a few years since I set this up, but I believe you also need an auth-constraint in webdefau

Basic Auth (again)

(re-posting as new email thread to see if this will make it to the list) That didn't help. I still get the same result and virtually no log to help me figure out where / what things are going wrong. Here is all that I see in C:\Solr\solr-5.2.1\server\logs\solr.log: INFO - 2015-07-23 05:29:1

Re: Basic auth

Hi, I have some questions regarding basic auth and proper support in 5.3: do you know when it would be released? Are there any requirements of ZK authentication must be there as well? Do we store the user/pass in ZK? SOLR-7274 pluggable security is already in 5.2 (my requirement is to provide

  1   2   >