[
https://issues.apache.org/jira/browse/SOLR-8792?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15269855#comment-15269855
]
Mark Miller commented on SOLR-8792:
-----------------------------------
We should really look at how to start testing this type of thing better longer
term. It would be great if things like bat scripts were tested when run on the
Policeman Windows box for example, and sh scripts on the LInux runs. Even if it
was just some simple unit tests that shell out.
> ZooKeeper ACL support broken
> ----------------------------
>
> Key: SOLR-8792
> URL: https://issues.apache.org/jira/browse/SOLR-8792
> Project: Solr
> Issue Type: Bug
> Components: Authentication, documentation
> Affects Versions: 5.0
> Reporter: Esther Quansah
> Assignee: Steve Rowe
> Labels: acl, authentication, security, zkcli, zkcli.sh, zookeeper
> Fix For: 6.1
>
> Attachments: SOLR-8792.patch, SOLR-8792.patch, SOLR-8792.patch,
> SOLR-8792.patch
>
>
> The documentation presented here:
> https://cwiki.apache.org/confluence/display/solr/ZooKeeper+Access+Control
> details the process of securing Solr content in ZooKeeper using ACLs. In the
> example usages, it is mentioned that access to zkcli can be restricted by
> adding credentials to the zkcli.sh script in addition to adding the
> appropriate classnames to solr.xml. With the scripts in zkcli.sh, another
> machine should not be able to read or write from the host ZK without the
> necessary credentials. At this time, machines are able to read/write from the
> host ZK with or without these credentials.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
