A colleague of mine just trialed using https://caddyserver.com/, which makes the SSL certificate aspects MUCH simpler than in nginx. I don’t have a public demonstration to show you, but hope to soon.
> On Sep 22, 2022, at 11:18 AM, dmitri maziuk <dmitri.maz...@gmail.com> wrote: > > On 2022-09-21 6:35 PM, Victoria Stuart (VictoriasJourney.com) wrote: >> I have a standalone instance of Solr 8.11 secured with SSL and Basic >> Authentication. >> I also have a website with registered users' credentials (username, >> password, ...) stored in a MySQL database. >> Questions: >> 1. What is the best way to allow registered users access to a Solr core (and >> unregistered users to a second, limited contents "demo" core)? >> A PHP curl request to security.json? (I can programmatically access the >> MySQL data as a PDO object in a PHP script.) >> 2. Does the standalone-configured Solr automatically watch security.json for >> changes? That is, if a new user is added (or an old one removed), will the >> active Solr instance notice the change in security.json, and add / restrict >> the user? If not, can security.json be reloaded (Solr core reload) without >> restarting Solr? >> 3. Any other suggestions? I am a relative novice on Solr as a deployed >> service. > > I would put it behind apache proxy with mod_auth_mysql -- or nginx if it has > mysql auth module by now. > > Dima > _______________________ Eric Pugh | Founder & CEO | OpenSource Connections, LLC | 434.466.1467 | http://www.opensourceconnections.com <http://www.opensourceconnections.com/> | My Free/Busy <http://tinyurl.com/eric-cal> Co-Author: Apache Solr Enterprise Search Server, 3rd Ed <https://www.packtpub.com/big-data-and-business-intelligence/apache-solr-enterprise-search-server-third-edition-raw> This e-mail and all contents, including attachments, is considered to be Company Confidential unless explicitly stated otherwise, regardless of whether attachments are marked as such.
