: Use SolrJ and embed solr in my webapp, but I want to disable the http access : to solr, meaning force all calls through my solrj interface I am building (no : admin access etc).
if you're app is running in a servlet container anyway, you might find it just as easy to install solr into the same servlet container (seperate webapp) but use ACL features of the container (or some other external firewall) to prevent access to Solr from your end users - so only your app and "you" (ie: localhost, localnet, etc...) can directly access solr. alternately: you can put servlit filter / firewall between your users and solr, so that they communicate with solr through a proxy that validates their credentials, and blocks them from accessing things you don't wnat them to access (ie: doing updates, accessing the admin pages, etc...) -Hoss
