Don't protect /admin/cores or (admin/collections probably).
On Tue, Sep 4, 2012 at 2:54 PM, Sudhakar Maddineni
<maddineni...@gmail.com> wrote:
> Hi,
> I setup a two shard cluster using tomcat 6.0.35 with solr 4.0.0-BETA
> version and zookeeper 3.3.4. I wanted to secure the solr admin page and
> added a BASIC auth to the container so that all admin requests to the index
> will be protected.I did this by adding below security constraint tag in
> web.xml in {tomcat_home}/conf directory. Also, I defined the corresponding
> roles ans user credentials in tomcat-users.xml at the same location. After
> doing this, I could see that admin page is successfully secured.
>
> ISSUE: But, the issue is Replication is not working and getting *401-
> unauthorized* access when replica tries to connect to the leader.Is there
> any workaround to fix this issue?
>
> Appreciate your help.
>
> <security-constraint>
> <web-resource-collection>
> <web-resource-name>
> Solr authenticated application
> </web-resource-name>
> <url-pattern>/admin/*</url-pattern>
> <http-method>GET</http-method>
> <http-method>POST</http-method>
> </web-resource-collection>
> <auth-constraint>
> <role-name>solradmin</role-name>
> </auth-constraint>
> </security-constraint>
> <login-config>
> <auth-method>BASIC</auth-method>
> <realm-name>Basic Authentication</realm-name>
> </login-config>
> <security-role>
> <description>My role</description>
> <role-name>solradmin</role-name>
> </security-role>
>
> Thanks,Sudhakar.
--
- Mark
