lucene-solr-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache Wiki <wikidi...@apache.org>
Subject [Solr Wiki] Update of "SolrSecurity" by JanHoydahl
Date Mon, 09 May 2011 21:35:38 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Solr Wiki" for change notification.

The "SolrSecurity" page has been changed by JanHoydahl.
The comment on this change is: Added comments to ManifoldCF security.
http://wiki.apache.org/solr/SolrSecurity?action=diff&rev1=25&rev2=26

--------------------------------------------------

  
  == Document Level Security ==
  
+ === Manifold CF (Connector Framework) ===
+ One way to add document level security to your search is through Apache [[http://incubator.apache.org/connectors/|ManifoldCF]].
ManifoldCF "defines a security model for target repositories that permits them to enforce
source-repository security policies".
+ 
+ It works by adding security tokens from the source repositories as metadata on the indexed
documents. Then, at query time, a Search Component adds a filter to all queries, matching
only documents the logged-in user is allowed to see. ManifoldCF supports AD security out of
the box.
+ 
  === Write Your Own RequestHandler or SearchComponent ===
  *Stub - this is incomplete*
+ 
+ If ManifoldCF does not solve your need, first consider writing a ManifoldCF plugin. Or roll
your own.
  
  If you need permission based authentication -- where user A can update document 1 and 2,
but not 3 -- you will need to augment the request with user information.  Either you can add
parameters to the query string (?u=XXX&p=YYY) or use a custom dispatcher filter that augments
the context:
  {{{
@@ -173, +180 @@

  
  }}}
  
- === Manifold CF (Connector Framework) ===
- One way to add document level security to your search is through Apache [[http://incubator.apache.org/connectors/|ManifoldCF]].
ManifoldCF "defines a security model for target repositories that permits them to enforce
source-repository security policies".
- 
  == Streaming Consideration ==
  
  If streaming is enabled, you need to make sure Solr is as secure as it needs to be.  When
streaming is enabled, the parameters "stream.url" will go to a remote site and download the
content.  Likewise, "stream.file" will read a file on disk.

Mime
View raw message