: 1) modify web.xml (part of the sources of solr.war, which you'll have to : rebuild) to define the authentication constraints you want.
for many servlet containers, this isn't neccessary. Jetty cor example also lets you define security realms in the jetty.xml (there's an example of this commented out in the example jetty.xml) -Hoss