Grokbase Groups Lucene dev June 2016
FAQ
[ https://issues.apache.org/jira/browse/SOLR-8792?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Steve Rowe reopened SOLR-8792:
------------------------------

Reopening to backport to 5.6 and 5.5.2.
ZooKeeper ACL support broken
----------------------------

Key: SOLR-8792
URL: https://issues.apache.org/jira/browse/SOLR-8792
Project: Solr
Issue Type: Bug
Components: Authentication, documentation
Affects Versions: 5.0
Reporter: Esther Quansah
Assignee: Steve Rowe
Labels: acl, authentication, security, zkcli, zkcli.sh, zookeeper
Fix For: 6.0.1, 6.1

Attachments: SOLR-8792.patch, SOLR-8792.patch, SOLR-8792.patch, SOLR-8792.patch


The documentation presented here: https://cwiki.apache.org/confluence/display/solr/ZooKeeper+Access+Control
details the process of securing Solr content in ZooKeeper using ACLs. In the example usages, it is mentioned that access to zkcli can be restricted by adding credentials to the zkcli.sh script in addition to adding the appropriate classnames to solr.xml. With the scripts in zkcli.sh, another machine should not be able to read or write from the host ZK without the necessary credentials. At this time, machines are able to read/write from the host ZK with or without these credentials.


--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
For additional commands, e-mail: dev-help@lucene.apache.org

Search Discussions

  • ASF subversion and git services (JIRA) at Jun 17, 2016 at 8:53 pm
    [ https://issues.apache.org/jira/browse/SOLR-8792?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15336928#comment-15336928 ]

    ASF subversion and git services commented on SOLR-8792:
    -------------------------------------------------------

    Commit 41e1a9061fcc2e7a3a93724845e313e880726ceb in lucene-solr's branch refs/heads/branch_5_5 from [~steve_rowe]
    [ https://git-wip-us.apache.org/repos/asf?p=lucene-solr.git;h=41e1a90 ]

    SOLR-8792: ZooKeeper ACL support fixed

    ZooKeeper ACL support broken
    ----------------------------

    Key: SOLR-8792
    URL: https://issues.apache.org/jira/browse/SOLR-8792
    Project: Solr
    Issue Type: Bug
    Components: Authentication, documentation
    Affects Versions: 5.0
    Reporter: Esther Quansah
    Assignee: Steve Rowe
    Labels: acl, authentication, security, zkcli, zkcli.sh, zookeeper
    Fix For: 5.6, 6.0.1, 6.1, 5.5.2

    Attachments: SOLR-8792.patch, SOLR-8792.patch, SOLR-8792.patch, SOLR-8792.patch


    The documentation presented here: https://cwiki.apache.org/confluence/display/solr/ZooKeeper+Access+Control
    details the process of securing Solr content in ZooKeeper using ACLs. In the example usages, it is mentioned that access to zkcli can be restricted by adding credentials to the zkcli.sh script in addition to adding the appropriate classnames to solr.xml. With the scripts in zkcli.sh, another machine should not be able to read or write from the host ZK without the necessary credentials. At this time, machines are able to read/write from the host ZK with or without these credentials.


    --
    This message was sent by Atlassian JIRA
    (v6.3.4#6332)

    ---------------------------------------------------------------------
    To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
    For additional commands, e-mail: dev-help@lucene.apache.org
  • Steve Rowe (JIRA) at Jun 17, 2016 at 8:53 pm
    [ https://issues.apache.org/jira/browse/SOLR-8792?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

    Steve Rowe resolved SOLR-8792.
    ------------------------------
            Resolution: Fixed
         Fix Version/s: 5.5.2
                        5.6
    ZooKeeper ACL support broken
    ----------------------------

    Key: SOLR-8792
    URL: https://issues.apache.org/jira/browse/SOLR-8792
    Project: Solr
    Issue Type: Bug
    Components: Authentication, documentation
    Affects Versions: 5.0
    Reporter: Esther Quansah
    Assignee: Steve Rowe
    Labels: acl, authentication, security, zkcli, zkcli.sh, zookeeper
    Fix For: 5.6, 5.5.2, 6.1, 6.0.1

    Attachments: SOLR-8792.patch, SOLR-8792.patch, SOLR-8792.patch, SOLR-8792.patch


    The documentation presented here: https://cwiki.apache.org/confluence/display/solr/ZooKeeper+Access+Control
    details the process of securing Solr content in ZooKeeper using ACLs. In the example usages, it is mentioned that access to zkcli can be restricted by adding credentials to the zkcli.sh script in addition to adding the appropriate classnames to solr.xml. With the scripts in zkcli.sh, another machine should not be able to read or write from the host ZK without the necessary credentials. At this time, machines are able to read/write from the host ZK with or without these credentials.


    --
    This message was sent by Atlassian JIRA
    (v6.3.4#6332)

    ---------------------------------------------------------------------
    To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
    For additional commands, e-mail: dev-help@lucene.apache.org
  • ASF subversion and git services (JIRA) at Jun 18, 2016 at 12:59 am
    [ https://issues.apache.org/jira/browse/SOLR-8792?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15337370#comment-15337370 ]

    ASF subversion and git services commented on SOLR-8792:
    -------------------------------------------------------

    Commit 9a30f091b657c9775738f3df29a5f6cc37495bc2 in lucene-solr's branch refs/heads/branch_5x from [~steve_rowe]
    [ https://git-wip-us.apache.org/repos/asf?p=lucene-solr.git;h=9a30f09 ]

    SOLR-8792: ZooKeeper ACL support fixed

    ZooKeeper ACL support broken
    ----------------------------

    Key: SOLR-8792
    URL: https://issues.apache.org/jira/browse/SOLR-8792
    Project: Solr
    Issue Type: Bug
    Components: Authentication, documentation
    Affects Versions: 5.0
    Reporter: Esther Quansah
    Assignee: Steve Rowe
    Labels: acl, authentication, security, zkcli, zkcli.sh, zookeeper
    Fix For: 5.6, 6.0.1, 6.1, 5.5.2

    Attachments: SOLR-8792.patch, SOLR-8792.patch, SOLR-8792.patch, SOLR-8792.patch


    The documentation presented here: https://cwiki.apache.org/confluence/display/solr/ZooKeeper+Access+Control
    details the process of securing Solr content in ZooKeeper using ACLs. In the example usages, it is mentioned that access to zkcli can be restricted by adding credentials to the zkcli.sh script in addition to adding the appropriate classnames to solr.xml. With the scripts in zkcli.sh, another machine should not be able to read or write from the host ZK without the necessary credentials. At this time, machines are able to read/write from the host ZK with or without these credentials.


    --
    This message was sent by Atlassian JIRA
    (v6.3.4#6332)

    ---------------------------------------------------------------------
    To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
    For additional commands, e-mail: dev-help@lucene.apache.org
  • ASF subversion and git services (JIRA) at Jun 18, 2016 at 12:59 am
    [ https://issues.apache.org/jira/browse/SOLR-8792?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15337371#comment-15337371 ]

    ASF subversion and git services commented on SOLR-8792:
    -------------------------------------------------------

    Commit 7f721752eef8560c9c3e03b7680599d7cbb2c7fa in lucene-solr's branch refs/heads/branch_5x from [~steve_rowe]
    [ https://git-wip-us.apache.org/repos/asf?p=lucene-solr.git;h=7f72175 ]

    SOLR-8792: Remove misplaced CHANGES entry

    ZooKeeper ACL support broken
    ----------------------------

    Key: SOLR-8792
    URL: https://issues.apache.org/jira/browse/SOLR-8792
    Project: Solr
    Issue Type: Bug
    Components: Authentication, documentation
    Affects Versions: 5.0
    Reporter: Esther Quansah
    Assignee: Steve Rowe
    Labels: acl, authentication, security, zkcli, zkcli.sh, zookeeper
    Fix For: 5.6, 6.0.1, 6.1, 5.5.2

    Attachments: SOLR-8792.patch, SOLR-8792.patch, SOLR-8792.patch, SOLR-8792.patch


    The documentation presented here: https://cwiki.apache.org/confluence/display/solr/ZooKeeper+Access+Control
    details the process of securing Solr content in ZooKeeper using ACLs. In the example usages, it is mentioned that access to zkcli can be restricted by adding credentials to the zkcli.sh script in addition to adding the appropriate classnames to solr.xml. With the scripts in zkcli.sh, another machine should not be able to read or write from the host ZK without the necessary credentials. At this time, machines are able to read/write from the host ZK with or without these credentials.


    --
    This message was sent by Atlassian JIRA
    (v6.3.4#6332)

    ---------------------------------------------------------------------
    To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
    For additional commands, e-mail: dev-help@lucene.apache.org

Related Discussions

Discussion Navigation
viewthread | post
Discussion Overview
groupdev @
categorieslucene
postedJun 17, '16 at 8:41p
activeJun 18, '16 at 12:59a
posts5
users1
websitelucene.apache.org

People

Translate

site design / logo © 2019 Grokbase