Password protection

If the following config files do not exist (which is the case after standard installation), there is open access for all without a password so everybody can find and read all indexed data and everyone can change, add or delete metadata configurations.

How to set up a password

To manage users and passwords for access to the search engine and for access to the management tools in a seperate other config file use the Apache webserver standard tool htpasswd:

Access to the search engine

Password protection for search users is configured in the config file /etc/solr-php-ui/.htpasswd. If this config file does not exist (which is the case after standard installation), there is open access for all without a password.

Create password config file and add an user

Create the password config file and add an user: htpasswd -c /etc/solr-php-ui/.htpasswd *username*

Add another user(s) or change passwords

Since the config file now exists, add users or change passwords: htpasswd /etc/solr-php-ui/.htpasswd *username*

Access to the management tools

Password protection for the management tools for datasources and metadata management (i.e. thesaurus or ontologies) is configured in the config file /etc/opensemanticsearch-django-webapps/.htpasswd.

If this config file does not exist (which is the case after standard installation), there is open access for all without a password or with the search engine password, if one is set.

Create password config file and add an user

Create the password config file and add an user: htpasswd -c /etc/opensemanticsearch-django-webapps/.htpasswd *username*

Add another user(s) or change passwords

Since the config file now exists, add users or change passwords: htpasswd /etc/opensemanticsearch-django-webapps/.htpasswd *username*

Django admin

The admin access for Django Web UI or facet configs can be set within the directory /var/lib/opensemanticsearch by python3 manage.py createsuperuser