[
https://issues.apache.org/jira/browse/SOLR-9481?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15625371#comment-15625371
]
Jan Høydahl commented on SOLR-9481:
-----------------------------------
Has to be some global state or thread issues I figure. Are you suggesting that
some username/password is entered by another test and then we use wrong
credentials for this?
The extra DEBUG logging revealed something interesting too. In a passing test
run we see these lines:
{noformat}
[junit4] 2> 3904 DEBUG (qtp1698836513-21) [ ]
o.a.s.s.SolrDispatchFilter Request to authenticate: Request(GET
//127.0.0.1:58765/solr/admin/authentication)@b521fd6, domain: 127.0.0.1, port:
58765
[junit4] 2> 3908 DEBUG (qtp1698836513-21) [ ]
o.a.s.s.SolrDispatchFilter User principal: null
[junit4] 2> 3908 DEBUG (qtp1698836513-21) [ ] o.a.s.s.HttpSolrCall
AuthorizationContext : userPrincipal: [null] type: [ADMIN], collections: [],
Path: [/admin/authentication] path : /admin/authentication params :
[junit4] 2> 3911 DEBUG (qtp1698836513-21) [ ]
o.a.s.s.RuleBasedAuthorizationPlugin No permissions configured for the resource
/admin/authentication . So allowed to access
[junit4] 2> 3912 INFO (qtp1698836513-21) [ ] o.a.s.s.HttpSolrCall
[admin] webapp=null path=/admin/authentication params={} status=0 QTime=3
[junit4] 2> 3912 DEBUG (qtp1698836513-21) [ ] o.a.s.s.HttpSolrCall
Closing out SolrRequest: {{params(),defaults(wt=json&indent=true)}}
[...many more lines...]
[junit4] 2> 4005 INFO
(TEST-BasicAuthStandaloneTest.testBasicAuth-seed#[3F9AB8AA5B5A65E6]) [ ]
o.e.j.s.ServerConnector Stopped
ServerConnector@117a0348{HTTP/1.1,[http/1.1]}{127.0.0.1:0}
{noformat}
But in the failing test we see no logs about checking userPrincipal at all:
{noformat}
[junit4] 2> 2497828 DEBUG (qtp1492928552-46458) [ ]
o.a.s.s.SolrDispatchFilter Request to authenticate: Request(GET
https://127.0.0.1:64493/solr/admin/authentication)@7a1251ec, domain: 127.0.0.1,
port: 64493
[junit4] 2> 2497830 INFO
(TEST-BasicAuthStandaloneTest.testBasicAuth-seed#[89F7DD5B01C6CD5E]) [ ]
o.e.j.s.ServerConnector Stopped ServerConnector@66783857{SSL,[ssl,
http/1.1]}{127.0.0.1:0}
{noformat}
I'm not sure why. The log {{o.a.s.s.SolrDispatchFilter User principal: null}}
is always printed if {{cores.getAuthenticationPlugin() != null}}... Too little
log statements in this part of the code...
> BasicAuthPlugin should support standalone mode
> ----------------------------------------------
>
> Key: SOLR-9481
> URL: https://issues.apache.org/jira/browse/SOLR-9481
> Project: Solr
> Issue Type: Improvement
> Security Level: Public(Default Security Level. Issues are Public)
> Components: security
> Reporter: Jan Høydahl
> Assignee: Jan Høydahl
> Labels: authentication
> Fix For: master (7.0), 6.4
>
> Attachments: SOLR-9481.patch, SOLR-9481.patch
>
>
> The BasicAuthPlugin currently only supports SolrCloud, and reads users and
> credentials from ZK /security.json
> Add support for standalone mode operation
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org
For additional commands, e-mail: dev-h...@lucene.apache.org
