Home / server / Questions / 146568
Accepted
Anonymous12345
Asked: 2010-05-30 12:25:40 +0800 CST

solr Security help

  • 772

I have solr setup with Jetty on my Ubuntu server.

On any computer now, I can type my_ip:8983/solr/ and the page will show upp to anybody.

How can I disable this so that only I can access that port and the solr admin?

Thanks

linux ubuntu apache-2.2 security

2 Answers

  1. Best Answer

    You best option is to to configure a firewall rule to prevent connections based on source. You can restrict what ips update the index in the config or enable authentication but neither of thes options give you what you are asking.

    • 1

  2. IP address restriction is not an acceptable solution, one would like to manage Solr from a dynamic IP which is allocated by my ISP.

    It can be done via tomcat.

    In etc/webdefault.xml add this inside the <web-app> block:

<security-constraint>
  <web-resource-collection>
      <web-resource-name>Solr Administration</web-resource-name>
      <url-pattern>/admin/*</url-pattern>
  </web-resource-collection>
  <auth-constraint>
      <role-name>solr-admin</role-name>
  </auth-constraint>
</security-constraint>

<login-config>
  <auth-method>BASIC</auth-method>
  <realm-name>Solr Administration</realm-name>
</login-config>

    tried it and it works. thanks Chris Adams http://acdha.tumblr.com/post/207608584/jetty-solr-password-cheatsheet

    • 1