Transmission of Private Resources into a New Sphere ('Resource Leak') and Exposure of Resource to Wrong Sphere in Crafter Search

@@ -4,6 +4,8 @@ target:
   engineManagementToken: ${env:ENGINE_MANAGEMENT_TOKEN}
   search:
     serverUrl: ${env:SEARCH_URL}
+    accessToken:
+      value: ${env:SEARCH_ACCESS_TOKEN}
     elasticsearch:
       # Single Cluster
       urls:

@@ -124,6 +124,10 @@ export SEARCH_MANAGEMENT_TOKEN=${SEARCH_MANAGEMENT_TOKEN:="defaultManagementToke
 export PROFILE_MANAGEMENT_TOKEN=${PROFILE_MANAGEMENT_TOKEN:="defaultManagementToken"}
 export SOCIAL_MANAGEMENT_TOKEN=${SOCIAL_MANAGEMENT_TOKEN:="defaultManagementToken"}
 
+# -------------------- Access tokens ----------------
+# Please update this per installation and provide these tokens to the APIs.
+export SEARCH_ACCESS_TOKEN=${SEARCH_ACCESS_TOKEN:="defaultAccessToken"}
+
 # -------------------- Encryption variables --------------------
 # These variables are used to encrypt and decrypt values inside the configuration files.
 export CRAFTER_ENCRYPTION_KEY=${CRAFTER_ENCRYPTION_KEY:="default_encryption_key"}

@@ -2,6 +2,8 @@
 crafter.engine.site.default.rootFolder.path=file:${CRAFTER_DATA_DIR}/repos/sites/{siteName}/sandbox/
 # The URL of Crafter Search
 crafter.engine.search.server.url=${SEARCH_URL}
+# The value for the access token for Crafter Search
+crafter.engine.search.server.accessToken.value=${SEARCH_ACCESS_TOKEN}
 # The URL of Crafter Profile
 crafter.profile.rest.client.url.base=${PROFILE_URL}
 # If the Security Provider is enabled

@@ -1,3 +1,6 @@
 crafter.search.solr.server.url=${SOLR_URL}
 # Search management authorization token
 crafter.search.management.authorizationToken=${SEARCH_MANAGEMENT_TOKEN}
+
+# Search access token
+crafter.search.api.access.token.value=${SEARCH_ACCESS_TOKEN}

@@ -98,6 +98,10 @@ export SEARCH_MANAGEMENT_TOKEN=${SEARCH_MANAGEMENT_TOKEN:="defaultManagementToke
 export PROFILE_MANAGEMENT_TOKEN=${PROFILE_MANAGEMENT_TOKEN:="defaultManagementToken"}
 export SOCIAL_MANAGEMENT_TOKEN=${SOCIAL_MANAGEMENT_TOKEN:="defaultManagementToken"}
 
+# -------------------- Access tokens ----------------
+# Please update this per installation and provide these tokens to the APIs.
+export SEARCH_ACCESS_TOKEN=${SEARCH_ACCESS_TOKEN:="defaultAccessToken"}
+
 # -------------------- Encryption variables --------------------
 export CRAFTER_ENCRYPTION_KEY=${CRAFTER_ENCRYPTION_KEY:="default_encryption_key"}
 export CRAFTER_ENCRYPTION_SALT=${CRAFTER_ENCRYPTION_SALT:="default_encryption_salt"}

@@ -4,6 +4,8 @@ crafter.engine.site.default.rootFolder.path=file:${CRAFTER_DATA_DIR}/repos/sites
 # crafter.engine.site.default.rootFolder.path=s3://crafter-serverless/sites/{siteName}
 # The URL of Crafter Search
 crafter.engine.search.server.url=${SEARCH_URL}
+# The value for the access token for Crafter Search
+crafter.engine.search.server.accessToken.value=${SEARCH_ACCESS_TOKEN}
 # The URL of Crafter Profile
 crafter.profile.rest.client.url.base=${PROFILE_URL}
 # If the Security Provider is enabled

@@ -1,3 +1,6 @@
 crafter.search.solr.server.url=${SOLR_URL}
 # Search management authorization token
 crafter.search.management.authorizationToken=${SEARCH_MANAGEMENT_TOKEN}
+
+# Search access token
+crafter.search.api.access.token.value=${SEARCH_ACCESS_TOKEN}