madrob commented on pull request #1463: URL: https://github.com/apache/lucene-solr/pull/1463#issuecomment-620725921
> Would it be useful to be able to configure from where to pull the username that will be passed in to Solr I think so, but that is probably better with something like SOLR-10814 in place so that we can keep the full subject name and also define a "short name". > I'm not familiar with the Principal class being wrapped here so maybe it has what we need, but as I understand there is more than one way to add a userid to a cert. The principal class works about how you'd expect w.r.t. `getName()`, which is what RuleBasedAuthorizationPlugin uses, and will return something like `CN=Solr User,OU=Engineering,O=Example Inc.,C=US`. Added that to the docs to clarify. > Wrt Admin UI I suspect it to "just work" if you have the right cert. Good ideas, I'll look into this and see if we need to make additions. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@lucene.apache.org For additional commands, e-mail: issues-h...@lucene.apache.org
