[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15926957#comment-15926957 ] Ishan Chattopadhyaya commented on SOLR-9516: Thanks Varun. Pushed to branch_6x as per commit c6a1aa20dc9f2e0bffcdb42cf01efff6466b1128. [ https://git-wip-us.apache.org/repos/asf?p=lucene-solr.git;h=c6a1aa20dc9f2e0bffcdb42cf01efff6466b1128 ] > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya >Assignee: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Fix For: 6.5, master (7.0) > > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 > 07-36-29.png, SOLR-9516.patch > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15926940#comment-15926940 ] ASF subversion and git services commented on SOLR-9516: --- Commit 2bce98b0c162c5d8a815bc3e2ec32ba6d08c62fa in lucene-solr's branch refs/heads/master from [~ichattopadhyaya] [ https://git-wip-us.apache.org/repos/asf?p=lucene-solr.git;h=2bce98b ] SOLR-9516: Updating CHANGES.txt entry > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya >Assignee: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Fix For: 6.5, master (7.0) > > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 > 07-36-29.png, SOLR-9516.patch > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15926794#comment-15926794 ] Varun Thacker commented on SOLR-9516: - Hi Ishan, Small nit: Can we change the CHANGES entry from {code} SOLR-9516: Admin UI (angular) didn't work with Kerberos (Cassandra Targett, Amrit Sarkar via Ishan Chattopadhyaya) {code} to something like this? Just a suggestion based on what I learnt from https://www.mail-archive.com/dev@lucene.apache.org/msg144137.html {code} SOLR-9516: Admin UI now works with Kerberos (Cassandra Targett, Amrit Sarkar via Ishan Chattopadhyaya) {code} > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya >Assignee: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Fix For: 6.5, master (7.0) > > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 > 07-36-29.png, SOLR-9516.patch > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15925976#comment-15925976 ] ASF subversion and git services commented on SOLR-9516: --- Commit 46de138214169e13162a74be46d8fedfd508d98a in lucene-solr's branch refs/heads/branch_6x from [~ichattopadhyaya] [ https://git-wip-us.apache.org/repos/asf?p=lucene-solr.git;h=46de138 ] SOLR-9516: Fix: Admin UI (angular) didn't work with Kerberos > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 > 07-36-29.png, SOLR-9516.patch > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15925974#comment-15925974 ] ASF subversion and git services commented on SOLR-9516: --- Commit 65c695b025ad0efb952494f767c1ec9fa44a4924 in lucene-solr's branch refs/heads/master from [~ichattopadhyaya] [ https://git-wip-us.apache.org/repos/asf?p=lucene-solr.git;h=65c695b ] SOLR-9516: Fix: Admin UI (angular) didn't work with Kerberos > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 > 07-36-29.png, SOLR-9516.patch > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15924839#comment-15924839 ] Amrit Sarkar commented on SOLR-9516: Ishan, all the buttons, commands, stats, tree, cloud, thread info, dashboard are working as expected positively. > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 > 07-36-29.png, SOLR-9516.patch > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15924793#comment-15924793 ] Ishan Chattopadhyaya commented on SOLR-9516: Amrit, I think it is fine to exclude the /solr/libs from being served through SDF (and hence leaving them unauthenticated), but that still doesn't explain why the authentication was failing for them. Excluding them from authentication makes sense due to performance reasons, but this is just a workaround to some other potential problem with SDF/Kerberos. If you're sure that other parts of UI also work fine (collections/core admin command buttons, zk/file tree etc.), then lets just commit the patch now and worry later as to why authentication wasn't working for /solr/lib endpoints (there could be some other problem with the way SDF works in certain cases). > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 > 07-36-29.png, SOLR-9516.patch > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15895531#comment-15895531 ] Ishan Chattopadhyaya commented on SOLR-9516: bq. I am not familiar with Kerberos setup, but if somebody provides replication instructions, I'll be happy to dig into it. https://github.com/chatman/solr-kerberos-docker > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 07-36-29.png > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15889437#comment-15889437 ] Ishan Chattopadhyaya commented on SOLR-9516: I can confirm that the exact setup works fine with old UI, but doesn't work with new UI. I'll reproduce and *try to* post logs. (When I saw this last time, I had no idea how to even copy logs) [~sarkaramr...@gmail.com], would you have a chance to have a look at this issue, please? Given that you're actively working on the UI these days, and given my limited UI knowledge, I might need your help here. > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 07-36-29.png > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15889399#comment-15889399 ] Alexandre Rafalovitch commented on SOLR-9516: - I am looking at: https://cwiki.apache.org/confluence/display/solr/Kerberos+Authentication+Plugin It says: {quote} In order for your browser to access the Solr Admin UI after enabling Kerberos authentication, it must be able to negotiate with the Kerberos authenticator service to allow you access. Each browser supports this differently, and some (like Chrome) do not support it at all. If you see 401 errors when trying to access the Solr Admin UI after enabling Kerberos authentication, it's likely your browser has not been configured properly to know how or where to negotiate the authentication request. Detailed information on how to set up your browser is beyond the scope of this documentation; please see your system administrators for Kerberos for details on how to configure your browser. {quote} Are we - absolutely - sure that the exact same setup works with the old UI? Could we get full browser/network traces for a request made from old UI and from New UI? Preferably while the backend is actually running with full TRACE log. > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 07-36-29.png > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15888054#comment-15888054 ] Cassandra Targett commented on SOLR-9516: - Replication is pretty straightforward if you have Kerberos already in your env: - Setup Solr to use Kerberos authentication. - Try to use the admin UI. You can't, with the 403 errors as seen in previously attached screenshots. The old Admin UI works fine. The rub here is that this requires setting up a Kerberos ticket server, etc., which really isn't the easiest thing in the world (I don't know how to do it, for example). Lucidworks has customers who have seen this, most recently using 6.4.1, so I can confirm it still exists in the latest Solr release. Ishan's initial report was against 6.2, so it's not just the latest; IMO we can assume it's all 6.x releases, and maybe even 5.5.2 per another reporter. There's a workaround for now - use the old UI - but if the old UI is removed, users with Kerberos auth will be unable to use the Admin UI. > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 07-36-29.png > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15886981#comment-15886981 ] Alexandre Rafalovitch commented on SOLR-9516: - It would be a blocker if it worked in old UI and we had it replicated on the latest Solr. At the moment, we don't have either fact confirmed, nor do we have the replication instructions. I am not familiar with Kerberos setup, but if somebody provides replication instructions, I'll be happy to dig into it. > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 07-36-29.png > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15886401#comment-15886401 ] Cassandra Targett commented on SOLR-9516: - If the plan is to remove the old Admin UI for Solr 7, then this needs to be considered a blocker for that. > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: Admin UI >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 07-36-29.png > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.15#6346) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15575623#comment-15575623 ] loushang commented on SOLR-9516: so you confirmed that this bug was not fixed in 6.2? > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: UI, web gui >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 07-36-29.png > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.4#6332) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15575614#comment-15575614 ] Cassandra Targett commented on SOLR-9516: - I believe [~ichattopadhyaya] was using 6.2 when he found the problem. > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: UI, web gui >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 07-36-29.png > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.4#6332) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15569832#comment-15569832 ] Alexandre Rafalovitch commented on SOLR-9516: - Could you try that against Solr 6.2? Because there had been a large number of issues fixed both for UI and for various security components. > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: UI, web gui >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: QQ20161012-0.png, Screenshot from 2016-09-15 07-36-29.png > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.4#6332) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15569094#comment-15569094 ] loushang commented on SOLR-9516: i get the same problem now. the solr version is 5.5.2 > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: UI, web gui >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: Screenshot from 2016-09-15 07-36-29.png > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.4#6332) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org
[jira] [Commented] (SOLR-9516) New UI doesn't work when Kerberos is enabled
[ https://issues.apache.org/jira/browse/SOLR-9516?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15540675#comment-15540675 ] Alexandre Rafalovitch commented on SOLR-9516: - Which version of Solr is this reported against? > New UI doesn't work when Kerberos is enabled > > > Key: SOLR-9516 > URL: https://issues.apache.org/jira/browse/SOLR-9516 > Project: Solr > Issue Type: Bug > Security Level: Public(Default Security Level. Issues are Public) > Components: UI, web gui >Reporter: Ishan Chattopadhyaya > Labels: javascript, newdev, security > Attachments: Screenshot from 2016-09-15 07-36-29.png > > > It seems resources like http://solr1:8983/solr/libs/chosen.jquery.js > encounter 403 error: > {code} > 2016-09-15 02:01:45.272 WARN (qtp611437735-18) [ ] > o.a.h.s.a.s.AuthenticationFilter Authentication exception: GSSException: > Failure unspecified at GSS-API level (Mechanism level: Request is a replay > (34)) > {code} > The old UI is fine. -- This message was sent by Atlassian JIRA (v6.3.4#6332) - To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org