janhoy commented on code in PR #1851:
URL: https://github.com/apache/solr/pull/1851#discussion_r1302216094
##########
solr/core/src/resources/security.json:
##########
@@ -0,0 +1,74 @@
+{
+ "authentication": {
+ "blockUnknown": false,
+ "class": "solr.BasicAuthPlugin",
Review Comment:
Never used it. Looks like you'll configure your entire KRB environment in
other files and sysprops, and then at the end you create security.json with
little more than the "class" property. When creating user:role mapping, the
username needs to match the kerberos principal, so I suppose that a user could
be mapped to role here too, although it would not be **add**user, but perhaps
**map**user?
Probably best to document that for kerberos we only support initial
bootstrap of security.json, no user:role mapping, which can be done in the UI
(?)
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org
For additional commands, e-mail: issues-h...@solr.apache.org
