[jira] [Commented] (SOLR-9257) Basic Authentication - Internode Requests Fail With 401
[ https://issues.apache.org/jira/browse/SOLR-9257?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15352562#comment-15352562 ] Shankar R commented on SOLR-9257: - Hi Am also having same issue when enable basic Authentication. SOlr cloud is running on two different machine, node 1 on one machine and nod2 on another machine. So the internode communication fail when enable basic authenitaction, I have tried to remove the blockUnknown from security but still same issue. It would be more helpful if resolved this issue, please let me know if you get any solution for this. > Basic Authentication - Internode Requests Fail With 401 > --- > > Key: SOLR-9257 > URL: https://issues.apache.org/jira/browse/SOLR-9257 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Authentication >Affects Versions: 6.1 >Reporter: Martin Löper > Labels: authentification, pki, security, ssl > > I enabled SSL successfully and subsequently also turned on the > BasicAuthentication Plugin along with Rule-Based Authentication in SolrCloud > mode. This works well when there is no inter-node communication. As soon as I > create a collection with 2 shards, I get the following exception for every > access of the "/select" request handler. > { > "responseHeader":{ > "zkConnected":true, > "status":401, > "QTime":181, > "params":{ > "q":"*:*", > "indent":"on", > "wt":"json", > "_":"1467062257216"}}, > "error":{ > "metadata":[ > > "error-class","org.apache.solr.client.solrj.impl.HttpSolrClient$RemoteSolrException", > > "root-error-class","org.apache.solr.client.solrj.impl.HttpSolrClient$RemoteSolrException"], > "msg":"Error from server at > https://myserver.xxx.corp:8983/solr/mycollection_shard2_replica1: Expected > mime type application/octet-stream but got text/html. \n\n http-equiv=\"Content-Type\" > content=\"text/html;charset=utf-8\"/>\nError 401 Unauthorized request, > Response code: 401\n\nHTTP ERROR > 401\nProblem accessing /solr/mycollection_shard2_replica1/select. > Reason:\nUnauthorized request, Response code: > 401\n\n\n", > "code":401}} > There are also PKIAuthenticationPlugin exceptions before the exception above: > Exception trying to get public key from : https://myserver.xxx.corp:8983/solr > org.noggit.JSONParser$ParseException: JSON Parse Error: char=<,position=0 > BEFORE='<' AFTER='html>
[jira] [Commented] (SOLR-9257) Basic Authentication - Internode Requests Fail With 401
[ https://issues.apache.org/jira/browse/SOLR-9257?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15351987#comment-15351987 ] Martin Löper commented on SOLR-9257: Yes exactly! Thank you for pointing that out! I forgot to mention the blockUnknown property is set in my scenario too. I see no reason to not set blockUnknown property true. So this is quite important for the whole BasicAuthentication Plugin to be usable in production. > Basic Authentication - Internode Requests Fail With 401 > --- > > Key: SOLR-9257 > URL: https://issues.apache.org/jira/browse/SOLR-9257 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Authentication >Affects Versions: 6.1 >Reporter: Martin Löper > Labels: authentification, pki, security, ssl > > I enabled SSL successfully and subsequently also turned on the > BasicAuthentication Plugin along with Rule-Based Authentication in SolrCloud > mode. This works well when there is no inter-node communication. As soon as I > create a collection with 2 shards, I get the following exception for every > access of the "/select" request handler. > { > "responseHeader":{ > "zkConnected":true, > "status":401, > "QTime":181, > "params":{ > "q":"*:*", > "indent":"on", > "wt":"json", > "_":"1467062257216"}}, > "error":{ > "metadata":[ > > "error-class","org.apache.solr.client.solrj.impl.HttpSolrClient$RemoteSolrException", > > "root-error-class","org.apache.solr.client.solrj.impl.HttpSolrClient$RemoteSolrException"], > "msg":"Error from server at > https://myserver.xxx.corp:8983/solr/mycollection_shard2_replica1: Expected > mime type application/octet-stream but got text/html. \n\n http-equiv=\"Content-Type\" > content=\"text/html;charset=utf-8\"/>\nError 401 Unauthorized request, > Response code: 401\n\nHTTP ERROR > 401\nProblem accessing /solr/mycollection_shard2_replica1/select. > Reason:\nUnauthorized request, Response code: > 401\n\n\n", > "code":401}} > There are also PKIAuthenticationPlugin exceptions before the exception above: > Exception trying to get public key from : https://myserver.xxx.corp:8983/solr > org.noggit.JSONParser$ParseException: JSON Parse Error: char=<,position=0 > BEFORE='<' AFTER='html>
[jira] [Commented] (SOLR-9257) Basic Authentication - Internode Requests Fail With 401
[ https://issues.apache.org/jira/browse/SOLR-9257?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15351944#comment-15351944 ] Ishan Chattopadhyaya commented on SOLR-9257: Do you think this could be related to SOLR-9188? > Basic Authentication - Internode Requests Fail With 401 > --- > > Key: SOLR-9257 > URL: https://issues.apache.org/jira/browse/SOLR-9257 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Authentication >Affects Versions: 6.1 >Reporter: Martin Löper > Labels: authentification, pki, security, ssl > > I enabled SSL successfully and subsequently also turned on the > BasicAuthentication Plugin along with Rule-Based Authentication in SolrCloud > mode. This works well when there is no inter-node communication. As soon as I > create a collection with 2 shards, I get the following exception for every > access of the "/select" request handler. > { > "responseHeader":{ > "zkConnected":true, > "status":401, > "QTime":181, > "params":{ > "q":"*:*", > "indent":"on", > "wt":"json", > "_":"1467062257216"}}, > "error":{ > "metadata":[ > > "error-class","org.apache.solr.client.solrj.impl.HttpSolrClient$RemoteSolrException", > > "root-error-class","org.apache.solr.client.solrj.impl.HttpSolrClient$RemoteSolrException"], > "msg":"Error from server at > https://myserver.xxx.corp:8983/solr/mycollection_shard2_replica1: Expected > mime type application/octet-stream but got text/html. \n\n http-equiv=\"Content-Type\" > content=\"text/html;charset=utf-8\"/>\nError 401 Unauthorized request, > Response code: 401\n\nHTTP ERROR > 401\nProblem accessing /solr/mycollection_shard2_replica1/select. > Reason:\nUnauthorized request, Response code: > 401\n\n\n", > "code":401}} > There are also PKIAuthenticationPlugin exceptions before the exception above: > Exception trying to get public key from : https://myserver.xxx.corp:8983/solr > org.noggit.JSONParser$ParseException: JSON Parse Error: char=<,position=0 > BEFORE='<' AFTER='html>