[
https://issues.apache.org/jira/browse/SOLR-7230?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14357735#comment-14357735
]
Ryan McKinley commented on SOLR-7230:
-------------------------------------
but +1 for using Shiro -- or at least making sure whatever happens plays nicely
with it.
with the shiro API, we would just need to wrap things with:
{code}
if(!currentUser.isPermitted( "solr:commit" ))...
{code}
or
{code}
SecurityUtils.getSubject().isPermitted(...)
{code}
If we find ourselves implementing anything that looks like this... lets use
someone else's API!
> An API to plugin security into Solr
> -----------------------------------
>
> Key: SOLR-7230
> URL: https://issues.apache.org/jira/browse/SOLR-7230
> Project: Solr
> Issue Type: New Feature
> Reporter: Noble Paul
>
> The objective is to define a API that a plugin can implement to protect
> various operations performed on Solr. It may have various implementations .
> Some built in and some external.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
