lucene-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ishan Chattopadhyaya (JIRA)" <>
Subject [jira] [Commented] (SOLR-7274) Pluggable authentication module in Solr
Date Thu, 02 Apr 2015 15:18:54 GMT


Ishan Chattopadhyaya commented on SOLR-7274:

[~gchanan] Thanks for pitching in! Cloudera's implementation was actually one of my starting
points when I started looking into this.

bq.  What I'm not sure about is how you will make the configuration general enough without
mentioning Filters. I.e. will there be pre-approved authentication mechanisms? Will I be able
to write my own?

My thought was to have configurations actually mention the filters (which may deal with any
authentication mechanism, not just preapproved ones), without the user having to add it to
the web.xml. For instance (and this may look different in the implementation), a user could
have a configuration as "HostnameFilter,SolrHadoopAuthenticationFilter" and the authentication
layer (which might itself be a servlet filter) would call the doFilter() on each of the two

bq. This discussion also seems focused on the server side. Is the client side considered outside
the scope of this jira? (i'm thinking something like SOLR-6625, but SOLR-4470 is related).

Client side configurations are in the scope of pluggable items for each authentication mechanism.
My thought was that this issue (SOLR-7274) could leverage the callback "frameworks" of SOLR-6625,
SOLR-4470 and focus on the pluggable aspects of the configurations for each authc mechanism.

> Pluggable authentication module in Solr
> ---------------------------------------
>                 Key: SOLR-7274
>                 URL:
>             Project: Solr
>          Issue Type: Sub-task
>            Reporter: Anshum Gupta
> It would be good to have Solr support different authentication protocols.
> To begin with, it'd be good to have support for kerberos and basic auth.

This message was sent by Atlassian JIRA

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message