banana
banana copied to clipboard
lucidworks
Banana authentication - authorizations
Hi everyone!
I am looking for a way to add security to Solr - Banana. Is there any way to add authentication and authorizations to Banana dashboards? - So that users' Banana dashboards can fetch authorized indexes / documents only depending on their authentication? - So that the users are presented with pre-configured dashboards / saved dashboards depending on their authentication? So that dashboards cannot be modified depending on users authentication?
Thanks a lot for paying attention!
Hi,
So you mean you will have members with different roles. Like (user, admin) and some have only read access and others have read/write access?
Yes Karim, I would like roles authorizations per collections / collections' indexes as well (a user cannot necessary have read access to all collections on the cluster) These features look essential to me for any production grade deployment in medium and large sized compagnies.
After some search I found that you can use 'Apache Sentry' which handle roles in 'Apache Solr' you can find out it here https://www.youtube.com/watch?v=8JN-iK0siYs
Yes thanks Karim I got this one, That's a solution for Solr alone, which is ok. The teadious part shows up when considering Banana, search and dashboards.
For people interested in Solr only, I would use users-roles facets. One can use Apache ManifoldCF as well : http://manifoldcf.apache.org/en_US/index.html (with tutos:) http://www.francelabs.com/blog/tutorial-for-combining-manifoldcf-and-solr-for-files-search/ http://www.francelabs.com/blog/tutorial-on-authorizations-for-manifold-cf-and-solr/
Thanks anyway!
Hi everyone, Any workaround? The feature as it mentioned by @lardzia is really necessary.
Hi Egor,
You can have a look at ManifoldCF http://www.slideshare.net/lucenerevolution/wright-nokia-manifoldcfeurocon-2011, custom code, or a paid souscription to lucid works' products Silk or Fusion.
A successful day to all
2015-06-11 15:36 GMT+02:00 Egor Ivanov [email protected]:
Hi everyone, Any workaround? The feature as it mentioned by @lardzia https://github.com/lardzia is really necessary.
— Reply to this email directly or view it on GitHub https://github.com/LucidWorks/banana/issues/98#issuecomment-111137708.
Lucidworks Fusion has Banana integrated with role based access controls On Jun 11, 2015 7:16 AM, "lardzia" [email protected] wrote:
Hi Egor,
You can have a look at ManifoldCF < http://www.slideshare.net/lucenerevolution/wright-nokia-manifoldcfeurocon-2011
, custom code, or a paid souscription to lucid works' products Silk or Fusion.
A successful day to all
2015-06-11 15:36 GMT+02:00 Egor Ivanov [email protected]:
Hi everyone, Any workaround? The feature as it mentioned by @lardzia https://github.com/lardzia is really necessary.
— Reply to this email directly or view it on GitHub https://github.com/LucidWorks/banana/issues/98#issuecomment-111137708.
— Reply to this email directly or view it on GitHub https://github.com/LucidWorks/banana/issues/98#issuecomment-111151361.
Thanks everybody! Looks like for me http://wiki.eclipse.org/Jetty/Tutorial/Realms is enough for the moment.
Hi I write a simple java application for this problem, and the mechanism of this application is so simple. For all of the addresses that will be used in banana I write my own servlet. /admin/cores /mycore/select /mycore/admin/luke when the query sent to this servlet I checked this query with tow parameter that added to banaba dashboard setting "Global Query Parameters" &user=username&pass=password. I authenticated the user with this tow parameter and change the query by adding the fq parameter to the query, it works for me and solve my problem!
@majidkabir - will your approach work with token-based authentication as well?
