Document settings for the token service (elastic/x-pack-elasticsearch#1381)

relates elastic/x-pack-elasticsearch#1345 Original commit: elastic/x-pack-elasticsearch@87234ad866
2017-06-22 08:45:14 -06:00 · 2017-06-22 08:45:14 -06:00 · 940722d5fe
parent 404cac7b6b
commit 940722d5fe
1 changed files with 19 additions and 0 deletions
--- a/docs/en/settings/security-settings.asciidoc
+++ b/docs/en/settings/security-settings.asciidoc
@ -56,6 +56,25 @@ Level Security>>.
 Set to `false` to prevent document and field level security 
 from being configured. Defaults to `true`.

+[float]
+[[token-service-settings]]
+=== Token Service Settings
+
+You can set the following token service settings in
+`elasticsearch.yml`.
+
+`xpack.security.authc.token.enabled`::
+Set to `false` to disable the built-in token service. Defaults to `true`.
+
+`xpack.security.authc.token.passphrase`::
+A secure passphrase that must be the same on each node and greater than
+8 characters in length. This passphrase is used to derive a cryptographic key
+with which the tokens will be encrypted and authenticated.
+
+`xpack.security.authc.token.timeout`::
+The length of time that a token is valid for. By default this value is `20m` or
+20 minutes. The maximum value is 1 hour.
+
 [float]
 [[realm-settings]]
 === Realm Settings