295051ee8c
This commit adds a token based access mechanism that is a subset of the OAuth 2.0 protocol. The token mechanism takes the same values as a OAuth 2 standard (defined in RFC 6749 and RFC 6750), but differs in that we use XContent for the body instead of form encoded values. Additionally, this PR provides a mechanism for expiration of a token; this can be used to implement logout functionality that prevents the token from being used again. The actual tokens are encrypted using AES-GCM, which also provides authentication. The key for encryption is derived from a salt value and a passphrase that is stored on each node in the secure settings store. By default, the tokens have an expiration time of 20 minutes and is configurable up to a maximum of one hour. Relates elastic/x-pack-elasticsearch#8 Original commit: elastic/x-pack-elasticsearch@3d201ac2bf |
||
|---|---|---|
| .. | ||
| src/test/java/org/elasticsearch/smoketest | ||
| build.gradle | ||
| roles.yml | ||