You are viewing a plain text version of this content. The canonical link for it is here.
Posted to solr-user@lucene.apache.org by Tushar Inamdar <tu...@waterlinedata.com> on 2018/06/29 01:04:43 UTC
SolrJ Kerberos Client API
Hello,
We are looking to move from SolrJ client v5.5.x to the latest v7.4.x.
The documentation on wiring kerberos with the client API here
<https://lucene.apache.org/solr/guide/7_4/kerberos-authentication-plugin.html#using-solrj-with-a-kerberized-solr>
seems out-of-date. The HttpClientUtil class doesn't have a method
setConfigurer(). Also Krb5HttpClientConfigurer class is missing from the
SolrJ library. This mechanism used to work with v5.5.4, but doesn't work
with any 7.x.
Am I missing something or is the documentation indeed out-of-date?
I am interested in the conventional jaas/keytab based access (not
delegation token).
Thanks,
Tushar.
Re: SolrJ Kerberos Client API
Posted by Jason Gerlowski <ge...@gmail.com>.
Hi Tushar,
You're right; the docs are a little out of date there.
Krb5HttpClientConfigurer underwent some refactoring recently and came
out with a different name: Krb5HttpClientBuilder.
The ref-guide should update the snippet you were referencing to
something more like:
System.setProperty("java.security.auth.login.config",
"/home/foo/jaas-client.conf");
HttpClientUtil.setHttpClientBuilder(new Krb5HttpClientBuilder());
There might be other small changes too.
Best,
Jason
On Thu, Jun 28, 2018 at 9:05 PM Tushar Inamdar <tu...@waterlinedata.com> wrote:
>
> Hello,
>
> We are looking to move from SolrJ client v5.5.x to the latest v7.4.x.
>
> The documentation on wiring kerberos with the client API here
> <https://lucene.apache.org/solr/guide/7_4/kerberos-authentication-plugin.html#using-solrj-with-a-kerberized-solr>
> seems out-of-date. The HttpClientUtil class doesn't have a method
> setConfigurer(). Also Krb5HttpClientConfigurer class is missing from the
> SolrJ library. This mechanism used to work with v5.5.4, but doesn't work
> with any 7.x.
>
> Am I missing something or is the documentation indeed out-of-date?
>
> I am interested in the conventional jaas/keytab based access (not
> delegation token).
>
> Thanks,
> Tushar.