lucene-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Peter Sturge (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (SOLR-3421) Distributed Search doesn't allow for HTTP Authentication
Date Sat, 28 Apr 2012 11:55:48 GMT

    [ https://issues.apache.org/jira/browse/SOLR-3421?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13264296#comment-13264296
] 

Peter Sturge commented on SOLR-3421:
------------------------------------

There is an existing patch for this behaviour - see:
    issues.apache.org/jira/browse/SOLR-1861

This patch allows distributed credentials to be passed inside the url, where SearchHandler
then parses this an creates HttpConnections for each shard in the distributed search.
Some useful extensions to this approach would be the use of certificates (instead of explicit
credentials), and/or acl lists stored on the server side, with pre-authentication (e.g. via
passing hash values instead of explicit credentials). The base mechanism provided in this
patch can be used in both cases.

HTH!
Peter

                
> Distributed Search doesn't allow for HTTP Authentication
> --------------------------------------------------------
>
>                 Key: SOLR-3421
>                 URL: https://issues.apache.org/jira/browse/SOLR-3421
>             Project: Solr
>          Issue Type: New Feature
>          Components: SearchComponents - other
>    Affects Versions: 3.6, 4.0
>         Environment: Sharded solr cluster
>            Reporter: Michael Della Bitta
>            Priority: Minor
>              Labels: auth, distributed_search, ssl
>
> The distributed search feature allows one to configure the list of shards the SearchHandler
should query and aggregate results from using the "shards" parameter. Unfortunately, there
is no way to configure any sort of authentication between shards and a distributed search-enabled
SearchHandler. It'd be good to be able to specify an authentication type, auth credentials,
and transport security to allow installations that don't have the benefit of being protected
by a firewall some measure of security.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
For additional commands, e-mail: dev-help@lucene.apache.org


Mime
View raw message