OpenSearch

History

jaymode 2e0b87f6c6 audit tampered request when verifying the user header fails When we receive a message and cannot decode the signed user header, we should audit this as a tampered request. The request may not be tampered if nodes are configured differently in terms of system keys, but this at least provides some evidence of the bad request on the nodes that receives it. Closes elastic/elasticsearch#647 Original commit: elastic/x-pack-elasticsearch@2f3411d9f9		2015-09-23 08:51:56 -04:00
..
.settings	Update eclipse files for Java 1.8 move	2015-09-10 10:04:31 -06:00
bin/shield	update CLI tools to work with spaces in the home path	2015-09-11 11:15:19 -04:00
config/shield	update the transport client and add integration tests	2015-09-09 12:30:41 -04:00
dev-tools	[maven] fix build issues with artifactId renaming	2015-08-18 18:03:40 +02:00
docs	Shield Docs: Added links to the topics for the new features.	2015-09-14 13:35:27 -07:00
src	audit tampered request when verifying the user header fails	2015-09-23 08:51:56 -04:00
LICENSE.txt	initial migration of shield	2015-07-13 12:31:34 +02:00
NOTICE.txt	initial migration of shield	2015-07-13 12:31:34 +02:00
README.asciidoc	initial migration of shield	2015-07-13 12:31:34 +02:00
TESTING.asciidoc	Don't redundantly run rest tests in both unit and integ tests.	2015-08-03 22:04:33 -04:00
pom.xml	Add warning suppressions	2015-09-09 12:45:20 -07:00
test-signatures.txt	initial migration of shield	2015-07-13 12:31:34 +02:00

README.asciidoc

= Elasticsearch Security Plugin

This plugins adds security features to elasticsearch

You can build the plugin with `mvn package`.

The documentation is put in the `docs/` directory.