[
https://issues.apache.org/jira/browse/SOLR-10100?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15854627#comment-15854627
]
Jan Høydahl commented on SOLR-10100:
------------------------------------
We already have SOLR-7890 covering the protection of security.json both on the
ZK API level and Admin UI level. There is a patch, but it is not committed.
Marking this as duplicate
> Hiding credentials from security.json when retrieving through /admin/zookeeper
> ------------------------------------------------------------------------------
>
> Key: SOLR-10100
> URL: https://issues.apache.org/jira/browse/SOLR-10100
> Project: Solr
> Issue Type: Improvement
> Security Level: Public(Default Security Level. Issues are Public)
> Components: security
> Reporter: Mano Kovacs
>
> {{/admin/zookeeper}} API is currently exposing {{security.json}} as-is, which
> can contain security credentials as well.
> Proposing a configurable list for hiding elements of {{security.json}} when
> loaded through {{/admin/zookeeper}}.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
