[jira] [Commented] (SOLR-4407) SSL Certificate based authentication for SolrCloud

Tue, 25 Feb 2014 06:01:44 -0800 

    [ 
https://issues.apache.org/jira/browse/SOLR-4407?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13911591#comment-13911591
 ] 

Steve Davids commented on SOLR-4407:
------------------------------------

bq. Only one caveat there - you'll find that SystemDefaultHttpClient and many 
other things are deprecated since I upgraded us to HttpClient 4.3.1

Unfortunately HttpClient seems to enjoy deprecating a lot of their classes, 
even classes that were brand new as of the previous version. Though, I do like 
the builder pattern that they have implemented with the HttpClientBuilder. That 
builder pattern allows the same functionality by the use of the 
"useSystemProperties" method 
(http://hc.apache.org/httpcomponents-client-ga/httpclient/apidocs/org/apache/http/impl/client/HttpClientBuilder.html#useSystemProperties()).
 It is important to note when configuring SSL clients need the flexibility to 
get in there and configure the HttpClient in their own unique way (in the case 
of using self-signed certs or a base certificate that doesn't match the host 
name). In those cases it is imperative that some form of the 
HttpClientConfigurer remain, perhaps a method signature along the lines of:

{code}
protected HttpClient configure(HttpClientBuilder httpClientBuilder, SolrParams 
config)
{code}

This would give the benefit of flexibility to clients by overriding the method 
and allowing them to use convenience methods on the HttpClientBuilder and 
return the httpClientBuilder.build() response, or allow them to return their 
own HttpClient customized completely to meet their needs.

> SSL Certificate based authentication for SolrCloud
> --------------------------------------------------
>
>                 Key: SOLR-4407
>                 URL: https://issues.apache.org/jira/browse/SOLR-4407
>             Project: Solr
>          Issue Type: New Feature
>          Components: SolrCloud
>    Affects Versions: 4.1
>            Reporter: Sindre Fiskaa
>              Labels: Authentication, Certificate, SSL
>             Fix For: 4.7
>
>
> I need to be able to secure sensitive information in solrnodes running in a 
> SolrCloud with either SSL client/server certificates or http basic auth..



--
This message was sent by Atlassian JIRA
(v6.1.5#6160)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to