[
https://issues.apache.org/jira/browse/SOLR-13942?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17054786#comment-17054786
]
Jan Høydahl commented on SOLR-13942:
------------------------------------
Please see SOLR-10100 which is related, where the aim is to hide security
credentials from security.json from /admin/zookeeper.
Currently the Admin UI is not aware of RBAC, so it will print everything it
gets from the API. Now, what if logged in user does not have proper role to see
zk data? Would the "Cloud/Tree" menu disappear? Or should we mask/redact
security.json only? Passwords may still exist in other config files in zk, in
theory, such as data-config.xml...
> /api/cluster/zk/* to fetch raw ZK data
> --------------------------------------
>
> Key: SOLR-13942
> URL: https://issues.apache.org/jira/browse/SOLR-13942
> Project: Solr
> Issue Type: New Feature
> Components: v2 API
> Reporter: Noble Paul
> Assignee: Noble Paul
> Priority: Minor
> Time Spent: 1h 40m
> Remaining Estimate: 0h
>
> example
> download the {{state.json}} of
> {code}
> GET http://localhost:8983/api/cluster/zk/collections/gettingstarted/state.json
> {code}
> get a list of all children under {{/live_nodes}}
> {code}
> GET http://localhost:8983/api/cluster/zk/live_nodes
> {code}
> If the requested path is a node with children show the list of child nodes
> and their meta data
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscr...@lucene.apache.org
For additional commands, e-mail: issues-h...@lucene.apache.org
