[
https://issues.apache.org/jira/browse/SOLR-9578?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16039734#comment-16039734
]
Hrishikesh Gadre commented on SOLR-9578:
----------------------------------------
The genesis of this feature is the "document level security" feature
implemented as part of Solr/Sentry integration. In this case, Sentry is
implementing a custom SearchComponent which is responsible to add necessary
query filters so that users can see only the data they are authorized for.
Interestingly the newer components in Solr (e.g. SQLHandler, GraphHandler,
StreamHandler etc.) are not based on SearchHandler. So I am wondering how to
integrate "document level security" with these newer components?
[~joel.bernstein] Any thoughts?
> Implement document level security in Solr
> -----------------------------------------
>
> Key: SOLR-9578
> URL: https://issues.apache.org/jira/browse/SOLR-9578
> Project: Solr
> Issue Type: Bug
> Security Level: Public(Default Security Level. Issues are Public)
> Affects Versions: 5.2
> Reporter: Hrishikesh Gadre
>
> SOLR-7275 introduced pluggable authorization framework. Currently it is not
> supporting document level security (or authorization). This is required for
> integrating Apache Sentry with this authorization framework (SENTRY-1475).
> Currently Sentry relies on custom Solr components to enforce this
> authorization. Please refer to
> http://blog.cloudera.com/blog/2014/07/new-in-cdh-5-1-document-level-security-for-cloudera-search/
> Please refer to this discussion as well,
> https://issues.apache.org/jira/browse/SOLR-7275?focusedCommentId=14490733&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-14490733
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
