lucene-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ishan Chattopadhyaya (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (SOLR-8440) Script support for enabling basic auth
Date Mon, 15 May 2017 12:44:04 GMT

     [ https://issues.apache.org/jira/browse/SOLR-8440?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Ishan Chattopadhyaya updated SOLR-8440:
---------------------------------------
    Attachment: SOLR-8440-follow-up.patch

Updated the patch:
# Changed {{-blockUnknown}} and {{-prompt}} to have a true|false argument.
# Accepts -s and -d (home and server directory), where basicAuth.conf is kept.
# Updated the Windows script to parse the parameters.
# Introduced {{-updateIncludeFileOnly true|false}} parameter, which avoids updating security.json
and only updates the solr.in.sh / solr.in.cmd.

Tested manually on GNU/Linux and Windows. [~janhoy], please review. I'll test a bit more before
committing.

> Script support for enabling basic auth
> --------------------------------------
>
>                 Key: SOLR-8440
>                 URL: https://issues.apache.org/jira/browse/SOLR-8440
>             Project: Solr
>          Issue Type: New Feature
>          Components: scripts and tools
>            Reporter: Jan Høydahl
>            Assignee: Ishan Chattopadhyaya
>              Labels: authentication, security
>             Fix For: 6.6, master (7.0)
>
>         Attachments: SOLR-8440-follow-up.patch, SOLR-8440-follow-up.patch, SOLR-8440.patch,
SOLR-8440.patch, SOLR-8440.patch, SOLR-8440.patch, SOLR-8440.patch, SOLR-8440.patch, SOLR-8440.patch,
SOLR-8440.patch, SOLR-8840_opt_parsing.patch
>
>
> Now that BasicAuthPlugin will be able to work without an AuthorizationPlugin (SOLR-8429),
it would be sweet to provide a super simple way to "Password protect Solr"™ right from the
command line:
> {noformat}
> bin/solr basicAuth -adduser -user solr -pass SolrRocks
> {noformat}
> It would take the mystery out of enabling one single password across the board. The command
would do something like this
> # Check if HTTPS is enabled, and if not, print a friendly warning
> # Check if {{/security.json}} already exists
> ## NO => create one with only plugin class defined
> ## YES => Abort if exists but plugin is not {{BasicAuthPlugin}}
> # Using security REST API, add the new user



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
For additional commands, e-mail: dev-help@lucene.apache.org


Mime
View raw message