SolrJ Kerberos Client API

[Tushar Inamdar <tu...@waterlinedata.com>]

Hello,

We are looking to move from SolrJ client v5.5.x to the latest v7.4.x.

The documentation on wiring kerberos with the client API here
<https://lucene.apache.org/solr/guide/7_4/kerberos-authentication-plugin.html#using-solrj-with-a-kerberized-solr>
seems out-of-date. The HttpClientUtil class doesn't have a method
setConfigurer(). Also Krb5HttpClientConfigurer class is missing from the
SolrJ library. This mechanism used to work with v5.5.4, but doesn't work
with any 7.x.

Am I missing something or is the documentation indeed out-of-date?

I am interested in the conventional jaas/keytab based access (not
delegation token).

Thanks,
Tushar.

Re: SolrJ Kerberos Client API

[Jason Gerlowski <ge...@gmail.com>]

Hi Tushar,

You're right; the docs are a little out of date there.
Krb5HttpClientConfigurer underwent some refactoring recently and came
out with a different name: Krb5HttpClientBuilder.

The ref-guide should update the snippet you were referencing to
something more like:

System.setProperty("java.security.auth.login.config",
"/home/foo/jaas-client.conf");
HttpClientUtil.setHttpClientBuilder(new Krb5HttpClientBuilder());

There might be other small changes too.

Best,

Jason
On Thu, Jun 28, 2018 at 9:05 PM Tushar Inamdar <tu...@waterlinedata.com> wrote:
>
> Hello,
>
> We are looking to move from SolrJ client v5.5.x to the latest v7.4.x.
>
> The documentation on wiring kerberos with the client API here
> <https://lucene.apache.org/solr/guide/7_4/kerberos-authentication-plugin.html#using-solrj-with-a-kerberized-solr>
> seems out-of-date. The HttpClientUtil class doesn't have a method
> setConfigurer(). Also Krb5HttpClientConfigurer class is missing from the
> SolrJ library. This mechanism used to work with v5.5.4, but doesn't work
> with any 7.x.
>
> Am I missing something or is the documentation indeed out-of-date?
>
> I am interested in the conventional jaas/keytab based access (not
> delegation token).
>
> Thanks,
> Tushar.