[SOLR-15828] Default permissions created when using bin/solr auth should agree with checks in security UI - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 9.0, 8.11.1
Component/s: None
Labels:
None

Description

When I enable security using:

bin/solr auth enable -type basicAuth -prompt true -z localhost:2181 -blockUnknown true

Then the security UI reports warnings:


 config-read is not protected! In general, if you protect config-edit, you should also protect config-read

 collection-admin-read is not protected! In general, if you protect collection-admin-edit, you should also protect collection-admin-read

 core-admin-read is not protected! In general, if you protect core-admin-edit, you should also protect core-admin-read

 The 'all' permission is not configured! In general, you should assign the 'all' permission to an admin role and list it as the last permission in your config.

Out of the box, the default permissions should not generate warnings.

Attachments

Issue Links

links to

GitHub Pull Request #438

GitHub Pull Request #2621

Activity

People

Assignee:: Timothy Potter

Reporter:: Timothy Potter

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 02/Dec/21 18:03

Updated:: 16/Dec/21 14:16

Resolved:: 02/Dec/21 19:31

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

40m