iamsanjay commented on PR #2460: URL: https://github.com/apache/solr/pull/2460#issuecomment-2112288509
> +1; will merge tomorrow. > > > The solr client is being used for REQUESTRECOVERY and did not seem to need the auth for that. > > Maybe you know something I don't here; what technical mechanism doesn't happen for recovery for auth? AFAIK all Solr-to-Solr communication needs to support AuthenticationPlugin. And I believe it is == see `org.apache.solr.update.UpdateShardHandler#setSecurityBuilder` invoked by the auth plugin initialization and that which configures the update & recovery clients. I found a bug in SOLR-16505! RecoveryStrategy is using a client without auth listener. It did not failed because, i believe, there is no specific test for Recovery where SolrCloud is configured along with Security.json. Going to submit PR today for a fix. @dsmiley Please open again SOLR-16505. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org For additional commands, e-mail: issues-h...@solr.apache.org
