OpenSearch

mirror of https://github.com/honeymoose/OpenSearch.git synced 2025-03-09 14:34:43 +00:00

History

jaymode 2e0b87f6c6 audit tampered request when verifying the user header fails

When we receive a message and cannot decode the signed user header, we should audit
this as a tampered request. The request may not be tampered if nodes are configured
differently in terms of system keys, but this at least provides some evidence of the bad
request on the nodes that receives it.

Closes elastic/elasticsearch#647

Original commit: elastic/x-pack-elasticsearch@2f3411d9f9

2015-09-23 08:51:56 -04:00

.settings

Update eclipse files for Java 1.8 move

2015-09-10 10:04:31 -06:00

bin/shield

update CLI tools to work with spaces in the home path

2015-09-11 11:15:19 -04:00

config/shield

update the transport client and add integration tests

2015-09-09 12:30:41 -04:00

dev-tools

[maven] fix build issues with artifactId renaming

2015-08-18 18:03:40 +02:00

docs

Shield Docs: Added links to the topics for the new features.

2015-09-14 13:35:27 -07:00

src

audit tampered request when verifying the user header fails

2015-09-23 08:51:56 -04:00

LICENSE.txt

initial migration of shield

2015-07-13 12:31:34 +02:00

NOTICE.txt

initial migration of shield

2015-07-13 12:31:34 +02:00

pom.xml

Add warning suppressions

2015-09-09 12:45:20 -07:00

README.asciidoc

initial migration of shield

2015-07-13 12:31:34 +02:00

test-signatures.txt

initial migration of shield

2015-07-13 12:31:34 +02:00

TESTING.asciidoc

Don't redundantly run rest tests in both unit and integ tests.

2015-08-03 22:04:33 -04:00

README.asciidoc

= Elasticsearch Security Plugin

This plugins adds security features to elasticsearch

You can build the plugin with `mvn package`.

The documentation is put in the `docs/` directory.