Update some Dashboards settings paths
This commit is contained in:
aetter
parent
b1d3a5906b
commit
eaba608cfd
|
|
@ -47,21 +47,21 @@ Setting | Description
|
||||||
opensearch.username: kibanaserver
|
opensearch.username: kibanaserver
|
||||||
opensearch.password: kibanaserver
|
opensearch.password: kibanaserver
|
||||||
opensearch.requestHeadersWhitelist: ["securitytenant","Authorization"]
|
opensearch.requestHeadersWhitelist: ["securitytenant","Authorization"]
|
||||||
plugins.security.multitenancy.enabled: true
|
opensearch_security.multitenancy.enabled: true
|
||||||
plugins.security.multitenancy.tenants.enable_global: true
|
opensearch_security.multitenancy.tenants.enable_global: true
|
||||||
plugins.security.multitenancy.tenants.enable_private: true
|
opensearch_security.multitenancy.tenants.enable_private: true
|
||||||
plugins.security.multitenancy.tenants.preferred: ["Private", "Global"]
|
opensearch_security.multitenancy.tenants.preferred: ["Private", "Global"]
|
||||||
plugins.security.multitenancy.enable_filter: false
|
opensearch_security.multitenancy.enable_filter: false
|
||||||
```
|
```
|
||||||
|
|
||||||
Setting | Description
|
Setting | Description
|
||||||
:--- | :---
|
:--- | :---
|
||||||
`opensearch.requestHeadersWhitelist` | OpenSearch Dashboards requires that you whitelist all HTTP headers that it passes to OpenSearch. Multi-tenancy uses a specific header, `securitytenant`, that must be present with the standard `Authorization` header. If the `securitytenant` header is not whitelisted, OpenSearch Dashboards starts with a red status.
|
`opensearch.requestHeadersWhitelist` | OpenSearch Dashboards requires that you whitelist all HTTP headers that it passes to OpenSearch. Multi-tenancy uses a specific header, `securitytenant`, that must be present with the standard `Authorization` header. If the `securitytenant` header is not whitelisted, OpenSearch Dashboards starts with a red status.
|
||||||
`plugins.security.multitenancy.enabled` | Enables or disables multi-tenancy in OpenSearch Dashboards. Default is true.
|
`opensearch_security.multitenancy.enabled` | Enables or disables multi-tenancy in OpenSearch Dashboards. Default is true.
|
||||||
`plugins.security.multitenancy.tenants.enable_global` | Enables or disables the global tenant. Default is true.
|
`opensearch_security.multitenancy.tenants.enable_global` | Enables or disables the global tenant. Default is true.
|
||||||
`plugins.security.multitenancy.tenants.enable_private` | Enables or disables the private tenant. Default is true.
|
`opensearch_security.multitenancy.tenants.enable_private` | Enables or disables the private tenant. Default is true.
|
||||||
`plugins.security.multitenancy.tenants.preferred` | Lets you change ordering in the **Tenants** tab of OpenSearch Dashboards. By default, the list starts with global and private (if enabled) and then proceeds alphabetically. You can add tenants here to move them to the top of the list.
|
`opensearch_security.multitenancy.tenants.preferred` | Lets you change ordering in the **Tenants** tab of OpenSearch Dashboards. By default, the list starts with global and private (if enabled) and then proceeds alphabetically. You can add tenants here to move them to the top of the list.
|
||||||
`plugins.security.multitenancy.enable_filter` | If you have many tenants, you can add a search bar to the top of the list. Default is false.
|
`opensearch_security.multitenancy.enable_filter` | If you have many tenants, you can add a search bar to the top of the list. Default is false.
|
||||||
|
|
||||||
|
|
||||||
## Add tenants
|
## Add tenants
|
||||||
|
|
|
||||||
|
|
@ -109,7 +109,7 @@ Role | Description
|
||||||
`anomaly_full_access` | Grants full permissions to all anomaly detection actions.
|
`anomaly_full_access` | Grants full permissions to all anomaly detection actions.
|
||||||
`anomaly_read_access` | Grants permissions to view detectors, but not create, modify, or delete detectors.
|
`anomaly_read_access` | Grants permissions to view detectors, but not create, modify, or delete detectors.
|
||||||
`all_access` | Grants full access to the cluster: all cluster-wide operations, write to all indices, write to all tenants.
|
`all_access` | Grants full access to the cluster: all cluster-wide operations, write to all indices, write to all tenants.
|
||||||
`kibana_read_only` | A special role that prevents users from making changes to visualizations, dashboards, and other OpenSearch Dashboards objects. See `plugins.security.readonly_mode.roles` in `opensearch_dashboards.yml`. Pair with the `kibana_user` role.
|
`kibana_read_only` | A special role that prevents users from making changes to visualizations, dashboards, and other OpenSearch Dashboards objects. See `opensearch_security.readonly_mode.roles` in `opensearch_dashboards.yml`. Pair with the `kibana_user` role.
|
||||||
`kibana_user` | Grants permissions to use OpenSearch Dashboards: cluster-wide searches, index monitoring, and write to various OpenSearch Dashboards indices.
|
`kibana_user` | Grants permissions to use OpenSearch Dashboards: cluster-wide searches, index monitoring, and write to various OpenSearch Dashboards indices.
|
||||||
`logstash` | Grants permissions for Logstash to interact with the cluster: cluster-wide searches, cluster monitoring, and write to the various Logstash indices.
|
`logstash` | Grants permissions for Logstash to interact with the cluster: cluster-wide searches, cluster monitoring, and write to the various Logstash indices.
|
||||||
`manage_snapshots` | Grants permissions to manage snapshot repositories, take snapshots, and restore snapshots.
|
`manage_snapshots` | Grants permissions to manage snapshot repositories, take snapshots, and restore snapshots.
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue