Hi Team, We are using solr 8.9 version and are using custom authentication and authorization. While working on this, we observed null users with REJECTED events in the logs. Upon investigating we observed the following points:
1. The null user is showing up for REJECTED event. 2. The client ip is the current solr node from which the query is being fired. 3. The error code is 401 which indicates Unauthorized. 4. The reason could be is that solr is not sending credentials when firing this queries. We need to investigate further on this. 5. Example uris for which we are getting null users: /solr/admin/collections, /solr/admin/authentication. 6. The above request are GET type. Is there a possibility that solr is firing the above requests without passing the credentials due to which we are seeing *REJECTED *events in the logs? Could you please assist on this? Best, Aniketh
