[
https://issues.apache.org/jira/browse/SOLR-16327?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17579810#comment-17579810
]
Shawn Heisey edited comment on SOLR-16327 at 8/15/22 4:49 PM:
--------------------------------------------------------------
I have more info now.
If I access the admin UI directly (actually using SSH port forwarding), then it
works correctly.
If I access it via haproxy (which adds https) then it shows the permission
error.
What is different between the two scenarios is that haproxy provides custom
error pages for 404, 403, 500, 502, 503, 504 and does not return the actual
error response. So part of the problem here is user error, but I think there
is still some work to do in the admin UI.
I wonder if we can have the UI at least display a more generic error(referring
the user to the log) if it cannot discern exactly what happened by the error
response, and only display the permission error when it is absolutely certain
that's what the problems is.
was (Author: elyograg):
I have more info now.
If I access the admin UI directly (actually using SSH port forwarding), then it
works correctly.
If I access it via haproxy (which adds https) then it shows the permission
error.
What is different between the two scenarios is that haproxy provides custom
error pages for 404, 403, 500, 502, 503, 504 and does not return the actual
error response. So part of the problem here is user error, but I think there
is still some work to do in the admin UI.
I wonder if we can have the UI at least display a more generic error if it
cannot discern exactly what happened by the error response, and only display
the permission error when it is absolutely certain that's what the problems is.
> Admin UI reports permission error if the request it made results in ANY
> exception
> ---------------------------------------------------------------------------------
>
> Key: SOLR-16327
> URL: https://issues.apache.org/jira/browse/SOLR-16327
> Project: Solr
> Issue Type: Bug
> Security Level: Public(Default Security Level. Issues are Public)
> Components: Admin UI
> Affects Versions: main (10.0)
> Reporter: Shawn Heisey
> Priority: Minor
> Attachments: image-2022-08-06-15-36-24-158.png, screenshot-1.png,
> solr9_ping_exception.txt
>
>
> A lot of the pages in the UI report permission errors even when the actual
> problem is some other exception. For this screenshot, I clicked first on the
> Overview, and then on Ping ... there was a misconfig in the ping handler
> where it was not declaring a default field, so the query generated an
> exception which is attached to the issue. I did not have a security.json
> file.
> !image-2022-08-06-15-36-24-158.png|width=389,height=182!
> I also saw this on other things besides Ping when I was clicking around the
> admin UI during a solr service restart. The version info showing where the
> git repo was when I compiled from branch_9x:
> 9.1.0-SNAPSHOT f1510b1f54ea9225df654e3aad0ca7da856c1f72 [snapshot build,
> details omitted]
>
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
