[
https://issues.apache.org/jira/browse/SOLR-8951?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jan Høydahl updated SOLR-8951:
------------------------------
Attachment: SOLR-8951.patch
Tests fail for the last patch, this new one adds AuthenticationPlugin to the
list of classes allowed for ResourceLoaderAware. Is this considered safe wrt
SOLR-8311 and corner cases? [~noble.paul]?
> Allow pluggable Authentication Providers in BasicAuthPlugin
> -----------------------------------------------------------
>
> Key: SOLR-8951
> URL: https://issues.apache.org/jira/browse/SOLR-8951
> Project: Solr
> Issue Type: New Feature
> Components: security
> Reporter: Jan Høydahl
> Fix For: 6.1
>
> Attachments: SOLR-8951.patch, SOLR-8951.patch
>
>
> Currently {{Sha256AuthenticationProvider}} is hardcoded in BasicAuthPlugin.
> Allow user to specify a new parameter {{authenticationProvider}} in
> {{security.json}} which determines the authentication provider with . Example:
> {code}
> "authentication":{
> "blockUnknown": true,
> "class":"solr.BasicAuthPlugin",
> "provider":{
> "class":"my.custom.AuthenticationProvider",
> "param":"value"
> }
> }
> {code}
> We would still default to {{Sha256AuthenticationProvider}}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
