[jira] [Commented] (SOLR-7896) Add a login page for Solr Administrative Interface

Thu, 03 Jan 2019 12:54:13 -0800 


    [ 
https://issues.apache.org/jira/browse/SOLR-7896?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16733508#comment-16733508
 ] 

Cassandra Targett commented on SOLR-7896:
-----------------------------------------

I was looking at some commits to the Ref Guide for copy-editing, and came 
across the edits for this.

I really should have paid a bit more attention earlier, since it seems from 
reading the docs that if I use any other auth other than Basic (such as 
Kerberos) I can then no longer ever access the UI at all after this change, is 
that true?

This is a step back in functionality, since today I can enable Kerberos auth 
and I don't need to access the login page; if my browser has been properly 
configured I can access the Admin UI using my valid ticket.

If that's the case, and we can't figure out anything else, the Ref Guide is 
going to need to be a lot more vocal about this limitation in places other than 
just the auth pages.

> Add a login page for Solr Administrative Interface
> --------------------------------------------------
>
>                 Key: SOLR-7896
>                 URL: https://issues.apache.org/jira/browse/SOLR-7896
>             Project: Solr
>          Issue Type: New Feature
>          Components: Admin UI, Authentication, security
>    Affects Versions: 5.2.1
>            Reporter: Aaron Greenspan
>            Assignee: Jan Høydahl
>            Priority: Major
>              Labels: authentication, login, password
>             Fix For: master (8.0), 7.7
>
>         Attachments: dispatchfilter-code.png, login-page.png, 
> login-screen-2.png, logout.png, unknown_scheme.png
>
>          Time Spent: 1h 20m
>  Remaining Estimate: 0h
>
> Now that Solr supports Authentication plugins, the missing piece is to be 
> allowed access from Admin UI when authentication is enabled. For this we need
>  * Some plumbing in Admin UI that allows the UI to detect 401 responses and 
> redirect to login page
>  * Possibility to have multiple login pages depending on auth method and 
> redirect to the correct one
>  * [AngularJS HTTP 
> interceptors|https://docs.angularjs.org/api/ng/service/$http#interceptors] to 
> add correct HTTP headers on all requests when user is logged in
> This issue should aim to implement some of the plumbing mentioned above, and 
> make it work with Basic Auth.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to