honeymoose
/
OpenSearch
mirror of https://github.com/honeymoose/OpenSearch.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
OpenSearch/x-pack/plugin
History
Ioannis Kakavas 7cabe8acc9 Fix refresh remote JWKS logic (#42662) 
This change ensures that:

- We only attempt to refresh the remote JWKS when there is a
signature related error only ( BadJWSException instead of the
geric BadJOSEException )
- We do call OpenIDConnectAuthenticator#getUserClaims upon
successful refresh.
- We test this in OpenIdConnectAuthenticatorTests.

Without this fix, when using the OpenID Connect realm with a remote
JWKSet configured in `op.jwks_path`, the refresh would be triggered
for most configuration errors ( i.e. wrong value for `op.issuer` )
and the kibana wouldn't get a response and timeout since
`getUserClaims` wouldn't be called because
`ReloadableJWKSource#reloadAsync` wouldn't call `onResponse` on the
future.
 		2019-05-30 18:08:30 +03:00
..
ccr Remove PRE_60_NODE_CHECKPOINT (#42531) 2019-05-28 12:25:53 +01:00
core [ML-DataFrame] rewrite start and stop to answer with acknowledged (#42589) 2019-05-29 11:14:32 +02:00
data-frame [ML Data Frame] Set DF task state when stopping (#42516) 2019-05-29 16:39:44 +01:00
deprecation Deprecate support for chained multi-fields. (#42330) 2019-05-24 15:55:06 -07:00
graph Switch run task to use real distro (#41590) 2019-05-06 12:34:07 -07:00
ilm Switch run task to use real distro (#41590) 2019-05-06 12:34:07 -07:00
logstash Switch run task to use real distro (#41590) 2019-05-06 12:34:07 -07:00
ml [ML] Use map and filter instead of flatMap in find_file_structure (#42534) 2019-05-24 20:12:06 +01:00
monitoring Update ciphers for TLSv1.3 and JDK11 if available (#42082) 2019-05-20 09:45:36 -04:00
rollup Fix unchecked warning in RollupIndexerIndexingTests#testSimpleDateHistoWithOverlappingDelay 2019-05-21 12:28:57 +02:00
security Fix refresh remote JWKS logic (#42662) 2019-05-30 18:08:30 +03:00
sql Geo: Refactor libs/geo parsers (#42549) 2019-05-29 20:07:27 -04:00
src/test [ML Data Frame] Set DF task state when stopping (#42516) 2019-05-29 16:39:44 +01:00
watcher Split document and metadata fields in GetResult (#38373) (#42456) 2019-05-23 14:01:07 -07:00
build.gradle Add support for API keys to access Elasticsearch (#38291) 2019-02-05 14:21:57 +11:00