无法获取授权插件以使用solr jwtauthplugin

lvjbypge 于 2021-10-10 发布在 Java

关注(0)|答案(1)|浏览(272)

我已经使用jwtauthtplugin保护了solr（8.7.0），因此我可以从auth使用aad。我想将healthcheck指标列入白名单。我收到了所有被列入白名单的申请的401。我可以使用aad登录solr admin
这是我的security.json

{
  "authentication": {
    "class": "solr.JWTAuthPlugin",
    "blockUnknown": false,
    "wellKnownUrl": "https://login.microsoftonline.com/myTenant/v2.0/.well-known/openid-configuration",
    "clientId": "myClientId",
    "adminUiScope": "openid api://myAPIid/solr"
  },
  "authorization":{
    "class":"solr.RuleBasedAuthorizationPlugin",
    "permissions":[ {
      "collection": null,
      "name": "healthcheckv2",
      "path": "/api/node/health",
      "role": null
    }, {
      "collection": null,
      "name": "healthcheckv1",
      "path": "/solr/admin/info/health",
      "role": null
    }, {
      "collection": null,
      "name": "infosystem",
      "path": "/solr/admin/info/system",
      "role": null
    }, {
      "collection": null,
      "name": "metrics",
      "path": "/admin/metrics",
      "role": null
    }, {
      "name": "security-edit",
      "role": "admin"
    }, {
      "name": "collection-admin-edit",
      "role": "admin"
    }, {
      "name": "core-admin-edit",
      "role": "admin"
    }, {
      "name": "all",
      "role": "*"
    }],
    "user-role": {
      "solr": "admin"
    }   
  }
}

我错过了什么？
谢谢

solr solrcloud

来源：https://stackoverflow.com/questions/67941989/cant-get-authorization-plugin-to-work-with-solr-jwtauthplugin

1条答案

按热度按时间

ef1yzkbh1#

调试solr后，rulecontainer似乎重写了运行状况检查的路径：
2021-06-14 18:19:52.941调试（qtp1581267786-21）[]o.e.j.r.h.rulecontainer重写/api/node/health到/solr/__uv2/node/health
因此，我们需要相应地调整许可：

{
      "collection": null,
      "name": "healthcheckv2Rewrite",
      "path": "/____v2/node/health",
      "role": null
    }

赞(0）回复(0）举报 2021-10-10

我来回答

无法获取授权插件以使用solr jwtauthplugin

1条答案

相关问题

热门标签

最新问答