Return-Path: 
 <solr-user-return-115989-apmail-lucene-solr-user-archive=lucene.apache.org@lucene.apache.org>
X-Original-To: apmail-lucene-solr-user-archive@minotaur.apache.org
Delivered-To: apmail-lucene-solr-user-archive@minotaur.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id D9420183E5
	for <apmail-lucene-solr-user-archive@minotaur.apache.org>;
 Wed, 16 Sep 2015 18:58:47 +0000 (UTC)
Received: (qmail 96812 invoked by uid 500); 16 Sep 2015 18:58:43 -0000
Delivered-To: apmail-lucene-solr-user-archive@lucene.apache.org
Received: (qmail 96744 invoked by uid 500); 16 Sep 2015 18:58:43 -0000
Mailing-List: contact solr-user-help@lucene.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:solr-user-help@lucene.apache.org>
List-Unsubscribe: <mailto:solr-user-unsubscribe@lucene.apache.org>
List-Post: <mailto:solr-user@lucene.apache.org>
List-Id: <solr-user.lucene.apache.org>
Reply-To: solr-user@lucene.apache.org
Delivered-To: mailing list solr-user@lucene.apache.org
Received: (qmail 96732 invoked by uid 99); 16 Sep 2015 18:58:43 -0000
Received: from Unknown (HELO spamd2-us-west.apache.org) (209.188.14.142)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 16 Sep 2015 18:58:43 +0000
Received: from localhost (localhost [127.0.0.1])
	by spamd2-us-west.apache.org (ASF Mail Server at spamd2-us-west.apache.org)
 with ESMTP id AB72C1A20F7
	for <solr-user@lucene.apache.org>; Wed, 16 Sep 2015 18:58:42 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org
X-Spam-Flag: NO
X-Spam-Score: 4
X-Spam-Level: ****
X-Spam-Status: No, score=4 tagged_above=-999 required=6.31
	tests=[HTML_MESSAGE=3, KAM_LAZY_DOMAIN_SECURITY=1,
	RCVD_IN_MSPIKE_H2=-0.001, WEIRD_PORT=0.001] autolearn=disabled
Received: from mx1-eu-west.apache.org ([10.40.0.8])
	by localhost (spamd2-us-west.apache.org [10.40.0.9]) (amavisd-new,
 port 10024)
	with ESMTP id cFVxHSOHYDH0 for <solr-user@lucene.apache.org>;
	Wed, 16 Sep 2015 18:58:41 +0000 (UTC)
Received: from mail-yk0-f172.google.com (mail-yk0-f172.google.com
 [209.85.160.172])
	by mx1-eu-west.apache.org (ASF Mail Server at mx1-eu-west.apache.org) with
 ESMTPS id 04EA3205B7
	for <solr-user@lucene.apache.org>; Wed, 16 Sep 2015 18:58:40 +0000 (UTC)
Received: by ykdt18 with SMTP id t18so208617561ykd.3
        for <solr-user@lucene.apache.org>;
 Wed, 16 Sep 2015 11:58:40 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20130820;
        h=x-gm-message-state:mime-version:in-reply-to:references:from:date
         :message-id:subject:to:content-type;
        bh=nM9njijtWlOZEuCI1qXVdld3XAdueMmneb3cyQMEHOU=;
        b=bdnU0Jg850dMEKERJM5wqO1U04h+c4WxrOKBrB8lqFKTvGRwNN5Ex13peDxap1JW2w
         QQjd36r9yoQFsUSJvMbNd2q66dF3weeMgSw4qeynfk47NtNF1XdY+M2uP8Wpa8DNIREg
         +j4ZvP0MnEDSQQ1hlDC4Mt8kVqM5A5M5/NwdhsK/EVvU+Q9uUtHz81FnHE0gUqoAvbdC
         VEWAErdQWBv5rflfwNJebKZKtWf5p9JDdC+yavt2KPB40fT62f66UxEkmOXPLfQudZjN
         ffwn7PZw/5jYAIlLaaeUN8XzQEz+C5AavDfQKeqA87kI2bKX6vF1KPDYuPo71aqGFPuf
         FRTA==
X-Gm-Message-State: 
 ALoCoQm/zCyQo72hM8daNManWNK9FdEF/WjjLAEf83X95s+4wIHM7I+HwcpfqB8A+FpPptA3r7AG
X-Received: by 10.170.62.133 with SMTP id e127mr30174787yke.81.1442429919834;
 Wed, 16 Sep 2015 11:58:39 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.129.114.85 with HTTP; Wed, 16 Sep 2015 11:58:10 -0700 (PDT)
X-Originating-IP: [50.131.60.127]
In-Reply-To: 
 <CAN+6kFnnaFDyyEPuEVXRBNGaMUuiBAeXJ2PQiJV6A6RDAFWQJQ@mail.gmail.com>
References: 
 <CAN+6kFkAbdYZzYnQVMsaNhhdPoHHNjfdNTWZG0BpSCF_upgTCQ@mail.gmail.com>
 <CAN+6kFnnaFDyyEPuEVXRBNGaMUuiBAeXJ2PQiJV6A6RDAFWQJQ@mail.gmail.com>
From: Anshum Gupta <anshum@anshumgupta.net>
Date: Wed, 16 Sep 2015 11:58:10 -0700
Message-ID: 
 <CAKiERN5VQNVhO4UV0M-1xQ4RnLG1-UCfEgK+vN1Hq96sRtqGuw@mail.gmail.com>
Subject: Re: Securing solr 5.2 basic auth permission rules
To: "solr-user@lucene.apache.org" <solr-user@lucene.apache.org>
Content-Type: multipart/alternative; boundary=001a11398198fc7a11051fe1e2c3

--001a11398198fc7a11051fe1e2c3
Content-Type: text/plain; charset=UTF-8

Basic authentication (and the API support, that you're trying to use) was
only released with 5.3.0 so it wouldn't work with 5.2.
5.2 only had the authentication and authorization frameworks, and shipped
with Kerberos authentication plugin out of the box.

There are a few known issues with that though, and a 5.3.1 release is just
around the corner.

On Wed, Sep 16, 2015 at 10:11 AM, Aziz Gaou <gaouaziz@gmail.com> wrote:

> Hi,
>
> I try to follow:
>
> https://cwiki.apache.org/confluence/display/solr/Basic+Authentication+Plugin
> ,
> to protect Solr 5.2 Admin with password, but I have not been able to
> secure.
>
> 1) When I run the following command:
>
> curl --user solr:SolrRocks http://localhost:8983/solr/admin/authentication
> -H 'Content-type:application/json'-d '{
>   "set-user": {"tom" : "TomIsCool" }}'
>
> no update on the file security.json
>
> 2) I launched the following 2 commands:
>
> curl --user solr:SolrRocks http://localhost:8983/solr/admin/authorization
> -H 'Content-type:application/json'-d '{"set-permission": {
> "name":"updates", "collection":"MyCollection", "role": "dev"}}'
>
> curl --user solr:SolrRocks http://localhost:8983/solr/admin/authorization
> -H 'Content-type:application/json' -d '{ "set-user-role": {"tom":["dev"}}'
>
> always MyCollection is not protected.
>
>
> thank you for your help.
>



-- 
Anshum Gupta

--001a11398198fc7a11051fe1e2c3--