In https://issues.apache.org/jira/browse/SOLR-5287 the general consensus seemed to be that uploading configs via unauthenticated HTTP was considered a security risk.
I wanted to ask whether an HTTP request that says, "please read these files off disk and upload to Zookeeper" would be considered a risk also. With this feature, the UI would look in some preconfigured place for configurations and allow the user to upload some standard configs to Zookeeper. They would only be able to modify those configs via the schema API or via editing the files on disk. Risk or acceptable? Thx, Upayavira --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
