The plugin is NOT intended as a pre-shared secret auth. For that you can use basic.
Look at the «jwk» config property, it allows you to hard code list of public signing keys, and then avoid a full OAuth setup. Your app will just need to sign the jwt token with a valid private key and Solr will accept it. Jan Høydahl > 3. feb. 2026 kl. 18:59 skrev Dmitri Maziuk <[email protected]>: > > Hi everyone, > > I'm reading the JWT Plugin docs and it looks like the only way I can use it > is by rolling up my own OAuth provider with "flows" and endpoints and the > kitchen sink -- that thing that nobody, including the original authors of > OAuth proposal, want. > > Is my reading correct, or is there a way to configure it with a pre-shared > token that I am not seeing? > > TIA, > Dima >
