Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

How do we call SOLR externally with SSO enabled?

athorne25
Explorer

on ‎2025 Feb 25 9:25 PM

0 Likes
883

SAP Commerce Cloud has introduced Single Sign-On (SSO) for its Solr catalogs, which is now causing our API calls to be redirected to the SSO login, resulting in a 303 error.

What are our options for accessing the Solr API under this new authentication setup?

Thank you in advance for any guidance!

 

Labels

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies

Accepted Solutions (0)

Answers (1)

Answers (1)

Agnieszka_Support
Advisor
Advisor
‎2025 Feb 26 8:33 AM
0 Likes

Disabling SSO for Solr in Commerce Cloud is against security regulations.
"3320534 - How to connect Solr through cURL/Postman in SAP Commerce" https://me.sap.com/notes/3320534/E
Solr Security https://help.sap.com/docs/SAP_COMMERCE_CLOUD_PUBLIC_CLOUD/b2f400d4c0414461a4bb7e115dccd779/f7251d5a1...

When SSO would be disabled, SAP security measures are no longer upheld and SAP cannot monitor environment in terms of secureness as effectively. Solr SSO was introduced to protect Solr endpoints even if they were set to public, intentionally or not. When one disables SSO the Solr admin console is not protected and anybody can login.

Disabling SSO for Solr in general means:
- Reduced security to access Solr
- No guarantee in reference to security implications around Solr

To access Solr API with SSO enabled one could make use of the OCC API for data exchange.

One could extend the Commerce OCC API, which would gather the relevant data from Solr. Utilizing this method, one would need though to ensure on customer's side that the filtering settings on the endpoint where OCC API is set up, are strict enough to guarantee security. Furthermore, such a configuration has the added benefit of the authentication mechanisms of OCC.

Please check documentation on OCC implementation:
https://help.sap.com/docs/SAP_COMMERCE_CLOUD_PUBLIC_CLOUD/3476714bba0b4cb9b3eb58c270e44439/8c19ab008...
https://help.sap.com/doc/ab7bf5127abb4c67a55df4ea67507511/2211/en-US/index.html#_overview

 

Show replies
Show replies
athorne25
Explorer
‎2025 Feb 28 3:38 PM
Would we need to create a dedicated SID for this?
athorne25
Explorer
‎2025 Feb 28 3:58 PM
oops... forget my last question, I am now clear that we would go through Hybris and not need a dedicated SID.
athorne25
Explorer
‎2025 Mar 01 4:47 PM
0 Likes
Thank you again for your response. I will keep this ticket open in case I have any questions while we code this solution.
Ask a Question