+1 on that! If you do want to provide direct results, ALWAYS send
requests through a proxy that can verify that a) all requests are coming
from your web app, and b) only "acceptable" queries are being passed on.
---- Nick
On 6/7/2012 2:50 PM, Michael Della Bitta wrote:
On Thu, Jun 7, 2012 at 1:59 PM, Nick Chase<nch...@earthlink.net> wrote:
The other option is to create a python page that does the call to Solr and
spits out just the HTML for your results, then call THAT rather than calling
Solr directly.
This is the *only* option if you're listening to Walter and I. Don't
give end users direct access to your Solr box!
