Uploaded image for project: 'Solr'
  1. Solr
  2. SOLR-8887

Solr Security features cannot export the internal, deprecated DefaultHttpClient class as part of their user facing API.

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Open
    • Critical
    • Resolution: Unresolved
    • None
    • 6.0
    • None
    • None

    Description

      Seems security now really depends on HttpClientConfigurer. That class was only used for tests previously, and was at best completely unsupported. We can't promise an API that locks us into an internal, low level, class from a lib. Especially a deprecated one. Solr wants to own the http layer, not get locked into impls.

      We need to stop using DefaultHttpClient, and it's going to break this stuff.

      Attachments

        Issue Links

          relates to

          Improvement - An improvement or enhancement to an existing feature or task. SOLR-4509 Move to non deprecated HttpClient impl classes to remove stale connection check on every request and move connection lifecycle management towards the client.

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              markrmiller@gmail.com Mark Miller
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated: