Hi all I have just been looking at solr-security-proxy, which seems to be a great little app to put in front of Solr (link below). But would it make more sense to use a whitelist of Solr parameters instead of a blacklist? Thanks Rick
https://github.com/dergachev/solr-security-proxy solr-security-proxy Node.js based reverse proxy to make a solr instance read-only, rejecting requests that have the potential to modify the solr index. --invalidParams Block these query params (comma separated) [default: "qt,stream"] -- Sorry for being brief. Alternate email is rickleir at yahoo dot com