Have you ever wonder how to avoid accidental or on purpose modification of the collection data? Of course, we could reject the access and it is one of the possible solutions, but it is not always possible. In today’s blog post we will look into how to easily protect your collection from accidental modifications by setting it to be read-only.<\/p>\n\n\n\n\n\n\n\n
When we create the collection, either via the API or using the bin\/ We are working with Solr 8.2, so Solr will use the configuration called _default<\/em> that is available in SolrCloud and used when no collection is specified. It allows us to index a simple document using the following command:<\/p>\n\n\n\n In response Solr will tell us that indexing went well, the document was processed and indexed properly:<\/p>\n\n\n\n If we would like our created collection to be read-only so that we can’t write data to it we would have to set the readOnly<\/em> attribute of that collection to Je\u017celi chcieliby\u015bmy, aby nasza kolekcja zosta\u0142a oznaczona jako tylko do odczytu, a zatem, aby jej modyfikacje nie by\u0142y mo\u017cliwe, nale\u017cy ustawi\u0107 atrybut kolekcji readOnly<\/em> na warto\u015b\u0107 true<\/em>. W tym celu korzystamy z nast\u0119puj\u0105cego wywo\u0142ania Collections API:<\/p>\n\n\n\n Response from Solr after the above command should look as follows:<\/p>\n\n\n\n Let’s test if that read-only mode works and how it works. <\/p>\n\n\n\n Let’s start with a simple indexing by using the following command:<\/p>\n\n\n\n In this case Solr will return an error similar to the following one:<\/p>\n\n\n\n What if we would like to use the Schema API to add a new field? Let’s test it by using the following command:<\/p>\n\n\n\n In this case the operation is successful:<\/p>\n\n\n\n In order to turn off collection read-only mode and once again allow modifications we need to use the Collections API one again and set the readOnly<\/em> attribute of the collection to false<\/em>:<\/p>\n\n\n\n As we can see on the above example with Solr 8.1 we got into our hand a simple yet useful method of protection of the documents inside the collection. If our application uses collection which can be set as read-only it is really worth considering. By using read-only collections we can save ourself potential problems of accidental data write in case of errors on our application side. With authorization and authentication available in SolrCloud we can also limit access to the Collections API and turn off the possibility of setting the read-only mode to unauthorized person adding yet another layer of security to our cluster. <\/p>\n","protected":false},"excerpt":{"rendered":" Have you ever wonder how to avoid accidental or on purpose modification of the collection data? Of course, we could reject the access and it is one of the possible solutions, but it is not always possible. In today’s blog<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_links_to":"","_links_to_target":""},"categories":[27],"tags":[623,164],"class_list":["post-1002","post","type-post","status-publish","format-standard","hentry","category-solr-en","tag-read-only","tag-solr-2"],"_links":{"self":[{"href":"https:\/\/solr.pl\/en\/wp-json\/wp\/v2\/posts\/1002","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/solr.pl\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solr.pl\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solr.pl\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/solr.pl\/en\/wp-json\/wp\/v2\/comments?post=1002"}],"version-history":[{"count":1,"href":"https:\/\/solr.pl\/en\/wp-json\/wp\/v2\/posts\/1002\/revisions"}],"predecessor-version":[{"id":1003,"href":"https:\/\/solr.pl\/en\/wp-json\/wp\/v2\/posts\/1002\/revisions\/1003"}],"wp:attachment":[{"href":"https:\/\/solr.pl\/en\/wp-json\/wp\/v2\/media?parent=1002"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solr.pl\/en\/wp-json\/wp\/v2\/categories?post=1002"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solr.pl\/en\/wp-json\/wp\/v2\/tags?post=1002"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}$ bin\/solr create_collection -c readonly<\/pre><\/p>\n\n\n\n
$ curl -XPOST -H 'Content-Type:application\/json' 'http:\/\/localhost:8983\/solr\/readonly\/update' -d '[
{
\"id\" : 1,
\"name\" : \"Test document\"
}
]'<\/pre><\/p>\n\n\n\n{
\"responseHeader\":{
\"rf\":1,
\"status\":0,
\"QTime\":168}}<\/pre><\/p>\n\n\n\nRead-only Collection<\/h2>\n\n\n\n
$ curl -XGET 'localhost:8983\/solr\/admin\/collections?action=MODIFYCOLLECTION&collection=readonly&readOnly=true'<\/pre><\/p>\n\n\n\n
{
\"responseHeader\":{
\"status\":0,
\"QTime\":846},
\"success\":{
\"192.168.0.20:8983_solr\":{
\"responseHeader\":{
\"status\":0,
\"QTime\":724}}}}<\/pre><\/p>\n\n\n\n$ curl -XPOST -H 'Content-Type:application\/json' 'http:\/\/localhost:8983\/solr\/readonly\/update' -d '[
{
\"id\" : 2,
\"name\" : \"Second test document\"
}
]'<\/pre><\/p>\n\n\n\n{
\"responseHeader\":{
\"status\":403,
\"QTime\":1},
\"error\":{
\"metadata\":[
\"error-class\",\"org.apache.solr.common.SolrException\",
\"root-error-class\",\"org.apache.solr.common.SolrException\"],
\"msg\":\"Collection readonly is read-only.\",
\"code\":403}}<\/pre><\/p>\n\n\n\n$ curl -XPOST -H 'Content-type:application\/json' 'http:\/\/localhost:8983\/solr\/readonly\/schema' --data-binary '{
\"add-field\" : {
\"name\" : \"test\",
\"type\" : \"string\",
\"stored\" : true,
\"indexed\" : true
}
}' <\/pre><\/p>\n\n\n\n{
\"responseHeader\":{
\"status\":0,
\"QTime\":479}}<\/pre><\/p>\n\n\n\nEnabling Modifications<\/h2>\n\n\n\n
$ curl -XGET 'localhost:8983\/solr\/admin\/collections?action=MODIFYCOLLECTION&collection=readonly&readOnly=false'<\/pre><\/p>\n\n\n\n
Summary<\/h2>\n\n\n\n