[SOLR-15771] bin/solr auth enable should model best practices for security.json - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: None
Fix Version/s: main (10.0), 9.4
Component/s: Authentication, SolrCLI
Labels:
None

Description

During discussion of SOLR-15770, the idea came up that the bin/solr auth enable command should model a best practices setup of security.json, with the idea that it's sometimes easier to show versus tell people how to setup security.

My wish for that default security.json

Add three users user , admin and superadmin
Add three roles with the same names
Map every permission in the system to one or more of those roles
End the chain with an all permission connected to the superadmin role

Bonus points would be to have the security.json be a template file read in by AuthTool instead of a hard to edit/understand String generated in Java. Then we could also reference this file in the Ref Guide (the way we do with some SolrJ chunks of code) and provide more detailed explanation of thinking in the Ref Guide.

Attachments

Issue Links

is related to

SOLR-16757 Umbrella Ticket for Revamping Solr CLI's for the Future

Open

relates to

SOLR-15770 Clarify Authorization documentation

Open

links to

GitHub Pull Request #1851

Activity

People

Assignee:: Eric Pugh

Reporter:: Eric Pugh

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 05/Nov/21 10:06

Updated:: 15/Oct/23 19:57

Resolved:: 12/Sep/23 18:45

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

5h 10m