[
https://issues.apache.org/jira/browse/SOLR-16200?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17537850#comment-17537850
]
Shawn Heisey commented on SOLR-16200:
-------------------------------------
I am very aware of this user's pain. A little while back, I put haproxy in
front of all my websites, because that software does a REALLY good job with
TLS. To avoid the overhead of an extra decryption and encryption, I started
configuring all the backend services without TLS. Some of my webapps (which
did not include Solr) just plain refused to generate HTTPS urls unless the
webserver was configured with TLS. One of the main holdouts was WordPress. A
couple of years after I did the haproxy installation, I finally found the right
configuration option to give WordPress so it would always force HTTPS.
If the URLs generated within the webapp (most likely by Javascript code) really
are all relative, then I suspect that it is Jetty that is doing the redirect
back to HTTP, and it might only happen after the initial login.
I will need to try and enable authentication on a Solr install and see if I can
track this down. I have never used any of the security measures Solr supports,
like HTTPS and authentication. My way of securing it is to make sure that
nobody can actually get to the Solr port. [~sam123123] ... what can you share
about the mechanisms you used to enable the authentication? I'd like to mirror
your setup as closely as I can and reproduce the problem.
> cant cancel scheme/protocol redirect when accessing the admin UI
> ----------------------------------------------------------------
>
> Key: SOLR-16200
> URL: https://issues.apache.org/jira/browse/SOLR-16200
> Project: Solr
> Issue Type: Bug
> Security Level: Public(Default Security Level. Issues are Public)
> Components: Admin UI
> Affects Versions: 8.11
> Reporter: sam
> Priority: Major
>
> I have solrcloud + zookeeper behind a reverse proxy which is doing https
> termination.
> Problem is when asking for solr's admin UI solr keeps redirecting me to http,
> I considered changing the urlscheme to https but then internal connections
> behind the proxy won't work.
> Is it possible to cancel the scheme/protocol redirect only? I still want to
> be redirected from / to /solr/
> I'm using solr's official docker images with a helm chart deploying to
> openshift.
> basiclly I want [http://my-solr/] to forward to [http://my-solr/solr/]
> and [https://my-solr/] to forward to [https://my-solr/solr/]
--
This message was sent by Atlassian Jira
(v8.20.7#820007)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org
For additional commands, e-mail: issues-h...@solr.apache.org
