[
https://issues.apache.org/jira/browse/SOLR-9640?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18048954#comment-18048954
]
Jan Høydahl commented on SOLR-9640:
-----------------------------------
The main reason for the clusterProp was probably to let a zk-backed SolrJ
client discover whether the cluster uses SSL.
And truly enough, in an empty cluster without any collections, there is no
other hints in Zookeeper for whether the cluster uses SSL. Only when you have a
collection, you will find a base_url property in the shards->replicas section
of state.json that gives it away.
But we now discourage zk discovery for normal users, so the seed URLs would be
enough. And we could always have the zk-backend SolrJ guess in this corner case
by attempting http first, then https.
> Support PKI authentication and SSL in standalone-mode master/slave auth with
> local security.json
> ------------------------------------------------------------------------------------------------
>
> Key: SOLR-9640
> URL: https://issues.apache.org/jira/browse/SOLR-9640
> Project: Solr
> Issue Type: New Feature
> Components: Authentication, security
> Reporter: Jan Høydahl
> Priority: Major
> Labels: authentication, pki
> Attachments: SOLR-9640.patch, SOLR-9640.patch, SOLR-9640.patch,
> SOLR-9640.patch, SOLR-9640.patch, SOLR-9640.patch, SOLR-9640.patch,
> SOLR-9640.patch
>
> Time Spent: 0.5h
> Remaining Estimate: 0h
>
> While working with SOLR-9481 I managed to secure Solr standalone on a
> single-node server. However, when adding
> {{&shards=localhost:8081/solr/foo,localhost:8082/solr/foo}} to the request, I
> get 401 error. This issue will fix PKI auth to work for standalone, which
> should automatically make both sharding and master/slave index replication
> work.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
