manifoldcf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject svn commit: r1536587 - in /manifoldcf/integration/solr-4.x/trunk: CHANGES.txt mcf/README.txt
Date Tue, 29 Oct 2013 05:07:58 GMT
Author: kwright
Date: Tue Oct 29 05:07:57 2013
New Revision: 1536587

Update documentation


Modified: manifoldcf/integration/solr-4.x/trunk/CHANGES.txt
--- manifoldcf/integration/solr-4.x/trunk/CHANGES.txt (original)
+++ manifoldcf/integration/solr-4.x/trunk/CHANGES.txt Tue Oct 29 05:07:57 2013
@@ -3,6 +3,11 @@ $Id$
 ======================= 0.5-dev =====================
+Add functionality making the plugin compatible with multi-domain
+features of ManifoldCF.  Specifically, allow multiple domain/username
+tuples to be passed in the request.
+(Karl Wright)
 ======================= Release 0.4 =====================
 CONNECTORS-534: Repackage plugins to have a true binary release,

Modified: manifoldcf/integration/solr-4.x/trunk/mcf/README.txt
--- manifoldcf/integration/solr-4.x/trunk/mcf/README.txt (original)
+++ manifoldcf/integration/solr-4.x/trunk/mcf/README.txt Tue Oct 29 05:07:57 2013
@@ -13,6 +13,10 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
+This version of this component is only compatible with ManifoldCF 1.5 and above, and cannot
be used with earlier releases of ManifoldCF.
 Getting Started
@@ -73,3 +77,34 @@ Hook up the search component in the solr
+Supplying authenticated usernames and domains
+This component looks for the following parameters in the Solr request object:
+At a minimum, AuthenticatedUserName must be present in order for the component to communicate
+the ManifoldCF Authority Service and obtain user access tokens.  In that case, the user identity
will consist
+of one user and one authorization domain.  If AuthenticatedUserDomain is not set, then the
authorization domain
+chosen will be the standard default domain, an empty string.
+If you need multiple user/domain tuples for the user identity, you may pass these as parameter
pairs starting with
+AuthenticatedUserName_0 and AuthenticatedUserDomain_0, and counting up as high as you like.
+Operation in conjunction with mod-authz-annotate
+An optional component of ManifoldCF can be built and deployed as part of Apache - mod-authz-annotate.
+mod-authz-annotate module obtains the Kerberos principal from the Kerberos tickets present
if mod-auth-kerb is used, and uses
+the MCF Authority Service to look up the appropriate access tokens.  If you choose to use
that architecture,
+you will still need to use this Solr component to modify the user query.  All you have to
do is the following:
+- Make sure you do not set AuthenticatedUserName or AuthenticatedUserName_0 in the request
+- Make sure the HTTP request from Apache to Solr translates all AAAGRP header values into
"UserToken" parameters
+   for the Solr request

View raw message