You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@manifoldcf.apache.org by "Jörn Franke (Jira)" <ji...@apache.org> on 2019/12/17 20:27:00 UTC

[jira] [Created] (CONNECTORS-1629) Support Solr Kerberos Authentication

Jörn Franke created CONNECTORS-1629:
---------------------------------------

             Summary: Support Solr Kerberos Authentication
                 Key: CONNECTORS-1629
                 URL: https://issues.apache.org/jira/browse/CONNECTORS-1629
             Project: ManifoldCF
          Issue Type: Improvement
          Components: Solr 7.x component
    Affects Versions: ManifoldCF 2.14
            Reporter: Jörn Franke


Several enterprise deployments of Solr are leveraging SolrCloud Kerberos authentication.

The integration seems to be rather simple and the goal of this Jira is to evaluate the possential needed step to eventually contribute the Kerberos integration to the ManifoldCF project.

The following steps would be needed:
 * One can pass the JVM parameter java.security.auth.login.config to the ManifoldCF JVM using -Djava.security.auth.login.config=/path/to/jaas.confg in which Kerberos authentication details, such as keytab and principal that has the right access to Solr is configured
 * A small adaption to the SolrCloudClient that is used within Manifold needs to be done to enable Kerberos authentication: HttpClientUtil.setConfigurer(new Krb5HttpClientConfigurer());

Related discussion [http://mail-archives.apache.org/mod_mbox/manifoldcf-user/201912.mbox/browser]

SolrJ Kerberos integration: [https://lucene.apache.org/solr/guide/8_3/kerberos-authentication-plugin.html#using-solrj-with-a-kerberized-solr]

Jaas conf documentation: https://docs.oracle.com/javase/8/docs/technotes/guides/security/jgss/tutorials/LoginConfigFile.html



--
This message was sent by Atlassian Jira
(v8.3.4#803005)