You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@lucene.apache.org by "Erick Erickson (JIRA)" <ji...@apache.org> on 2018/03/29 05:04:00 UTC

[jira] [Created] (SOLR-12161) CloudSolrClient with basic auth enabled will update even if no credentials supplied

Erick Erickson created SOLR-12161:
-------------------------------------

             Summary: CloudSolrClient with basic auth enabled will update even if no credentials supplied
                 Key: SOLR-12161
                 URL: https://issues.apache.org/jira/browse/SOLR-12161
             Project: Solr
          Issue Type: Bug
      Security Level: Public (Default Security Level. Issues are Public)
          Components: Authentication
    Affects Versions: 7.3
            Reporter: Erick Erickson
            Assignee: Erick Erickson


This is an offshoot of SOLR-9399. When I was writing a test, if I create a cluster with basic authentication set up, I can _still_ add documents to a collection even without credentials being set in the request.

However, simple queries, commits etc. all fail without credentials set in the request.

I'll attach a test class that illustrates the problem.

If I use a new HttpSolrClient instead of a CloudSolrClient, then the update request fails as expected.

[~noblepaul] do you have any insight here? Possibly something with splitting up the update request to go to each individual shard?



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
For additional commands, e-mail: dev-help@lucene.apache.org