[
https://issues.apache.org/jira/browse/SOLR-7230?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14358073#comment-14358073
]
Noble Paul commented on SOLR-7230:
----------------------------------
Is shiro an api ? I think it's a specific implementation. maintaining
multinode sessions for a cluster of 100s or 1000s of nodes may not be a a
very good idea for scaling for all users. Users may alrready have other
identity/access management systems. Our apis will not need to worry about
users per se. All we need to know is , it's this operation allowed in that
call. Shiro can be a specific impl but an identity based api may not be
required.
> An API to plugin security into Solr
> -----------------------------------
>
> Key: SOLR-7230
> URL: https://issues.apache.org/jira/browse/SOLR-7230
> Project: Solr
> Issue Type: New Feature
> Reporter: Noble Paul
>
> The objective is to define a API that a plugin can implement to protect
> various operations performed on Solr. It may have various implementations .
> Some built in and some external.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
