OpenSearch/x-pack/plugin/security
Ioannis Kakavas d56f25acb4
Validate hashing algorithm in users tool (#55628) (#55734)
This change adds validation when running the users tool so that
if Elasticsearch is expected to run in a JVM that is configured to
be in FIPS 140 mode and the password hashing algorithm is not
compliant, we would throw an error.
Users tool uses the configuration from the node and this validation
would also happen upon node startup but users might be added in the
file realm before the node is started and we would have the
opportunity to notify the user of this misconfiguration.
The changes in #55544 make this much less probable to happen in 8
since the default algorithm will be compliant but this change can
act as a fallback in anycase and makes for a better user experience.
2020-04-27 12:23:41 +03:00
..
cli Fix certutil http for empty password with JDK 11 and lower (#55437) (#55565) 2020-04-22 15:03:10 +10:00
forbidden Add an OpenID Connect authentication realm (#40674) (#41178) 2019-04-15 12:41:16 +03:00
licenses Upgrade feature aware check usage of ASM to 7.3.1 (#54577) 2020-04-18 10:49:57 -04:00
qa Deprecate disabling basic-license features (#54816) (#55405) 2020-04-17 15:04:17 -04:00
src Validate hashing algorithm in users tool (#55628) (#55734) 2020-04-27 12:23:41 +03:00
build.gradle Upgrade feature aware check usage of ASM to 7.3.1 (#54577) 2020-04-18 10:49:57 -04:00