Uploaded image for project: 'Solr'
  1. Solr
  2. SOLR-7692

Implement BasicAuth based impl for the new Authentication/Authorization APIs

    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Closed
    • Blocker
    • Resolution: Fixed
    • None
    • 5.3, 6.0
    • None
    • None

    Description

      This involves various components

      Authentication

      A basic auth based authentication filter. This should retrieve the user credentials from ZK. The user name and sha1 hash of password should be stored in ZK

      sample authentication json 

      {
  "authentication":{

    "class": "solr.BasicAuthPlugin",
    "users" :{
      "john" :"09fljnklnoiuy98 buygujkjnlk",
      "david":"f678njfgfjnklno iuy9865ty",
      "pete": "87ykjnklndfhjh8 98uyiy98",
       }
  }
}

      authorization plugin

      This would store the roles of various users and their privileges in ZK

      sample authorization.json

      {
  "authorization": {
    "class": "solr.ZKAuthorization",
   "user-role" :{
  "john" : ["admin", "guest"]
  "tom" : 'dev'
   }
    "permissions": [
       {"name":"collection-edit",
         "role": "admin" 
       },
       {"name":"coreadmin",
         "role":"admin"
       },
       {"name": "mycoll_update",
        "collection": "mycoll",
        "path":["/update/*"],
        "role": ["guest","admin"]
      }]
    }
  }
}

      We will also need to provide APIs to create users and assign them roles

      Attachments

        1. SOLR-7757.patch
          64 kB
          Noble Paul
        2. SOLR-7757.patch
          64 kB
          Anshum Gupta
        3. SOLR-7757.patch
          63 kB
          Ishan Chattopadhyaya
        4. SOLR-7692.patch
          29 kB
          Noble Paul
        5. SOLR-7692.patch
          33 kB
          Noble Paul
        6. SOLR-7692.patch
          70 kB
          Noble Paul
        7. SOLR-7692.patch
          111 kB
          Noble Paul
        8. SOLR-7692.patch
          118 kB
          Noble Paul
        9. SOLR-7692.patch
          122 kB
          Noble Paul
        10. SOLR-7692.patch
          122 kB
          Noble Paul
        11. SOLR-7692.patch
          122 kB
          Noble Paul
        12. SOLR-7692.patch
          125 kB
          Noble Paul
        13. SOLR-7692.patch
          128 kB
          Noble Paul
        14. SOLR-7692.patch
          63 kB
          Noble Paul
        15. SOLR-7692.patch
          64 kB
          Anshum Gupta
        16. SOLR-7692.patch
          64 kB
          Ishan Chattopadhyaya
        17. SOLR-7692.patch
          64 kB
          Anshum Gupta
        18. SOLR-7692.patch
          64 kB
          Ishan Chattopadhyaya

        Issue Links

          depends upon

          Sub-task - The sub-task of the issue SOLR-7757 Create a framework to edit/reload security params

          • Blocker - Blocks development and/or testing work, production could not run
          • Closed
          duplicates

          Bug - A problem which impairs or prevents the functions of the product. SOLR-7649 Basicauth authentication module

          • Major - Major loss of function.
          • Closed

          New Feature - A new feature of the product, which has yet to be developed. SOLR-4470 Support for basic http auth in internal solr requests

          • Major - Major loss of function.
          • Closed
          Is contained by

          New Feature - A new feature of the product, which has yet to be developed. SOLR-7236 Securing Solr (umbrella issue)

          • Major - Major loss of function.
          • Closed

          Activity

            People

              noble.paul Noble Paul
              noble.paul Noble Paul
              Votes:
              1 Vote for this issue
              Watchers:
              9 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: