On 2/11/26 22:05, Ciprian Dimofte - Opensolr.com wrote:
Hey Dima,
You're not missing anything — there is no REST/HTTP API endpoint for uploading
security.json to ZooKeeper. It's a known gap in Solr 9's "everything is API"
story.
Your options are the two CLI approaches you already found:
bin/solr zk cp file:security.json zk:/security.json -z localhost:9983
So this doesn't actually work on the production cluster with zk "chroot":
```
bin/solr zk cp file:security.json zk:/solr9/security.json
```
does place security.json into /solr9 node of zk tree, but "security"
page in admin UI still shows "security not enabled for this server".
After restarting the nodes, startup log message is "Not all security
plugins configured! authentication=disabled authorization=disabled."
All I see in The Fine Manual on the subject is "you should use the
appropriate APIs for the plugins you're using to update it". I doubt
anyone who isn't Solr security API developer will figure this one out.
bin/solr auth enable — which bootstraps a default BasicAuth security.json for
you.
This is the only way that worked for me.
Thanks
Dima
