Commit Graph

42 Commits

Author SHA1 Message Date
Stephen Crawford 2be2b7b52d
Update TLS settings to have brief documentation around the use of encrypted SSL password settings (#5582)
* readd auth token doc

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

* Add docs

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

* Remove extra file

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

* remove please

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

* Update _security/configuration/tls.md

Signed-off-by: Stephen Crawford <65832608+scrawfor99@users.noreply.github.com>

* Update

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

* split pr

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

* separate PR for backport to 2.7

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

---------

Signed-off-by: Stephen Crawford <steecraw@amazon.com>
Signed-off-by: Stephen Crawford <65832608+scrawfor99@users.noreply.github.com>
Co-authored-by: kolchfa-aws <105444904+kolchfa-aws@users.noreply.github.com>
2023-11-13 18:40:28 -05:00
Stephen Crawford 5f12318880
Update security documentation around username resolution (#5580)
* readd auth token doc

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

* Add docs

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

* Remove extra file

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

* remove please

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

* Update _security/configuration/tls.md

Signed-off-by: Stephen Crawford <65832608+scrawfor99@users.noreply.github.com>

* Update

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

* split pr

Signed-off-by: Stephen Crawford <steecraw@amazon.com>

---------

Signed-off-by: Stephen Crawford <steecraw@amazon.com>
Signed-off-by: Stephen Crawford <65832608+scrawfor99@users.noreply.github.com>
2023-11-13 17:15:10 -05:00
Samuel Valdes Gutierrez 7012af124a
[OSCI][DOCs] Replacing 'indices' terms for 'indexes' terms ONLY for description texts (#5353)
* Fixing documentation for Wildcard in term-level queries section for Query DSL

Signed-off-by: Samuel Valdes Gutierrez <valdesgutierrez@gmail.com>

* replacing 'indices' term for 'indexes' term ONLY for description texts (not variables, links or properties)

Signed-off-by: Samuel Valdes Gutierrez <valdesgutierrez@gmail.com>

* Update creating-custom-workloads.md

Signed-off-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>

* updating changes suggested by Naarcha-AWS

Signed-off-by: Samuel Valdes Gutierrez <valdesgutierrez@gmail.com>

* updating changes suggested by Naarcha-AWS

Signed-off-by: Samuel Valdes Gutierrez <valdesgutierrez@gmail.com>

* Rename _benchmark/workloads/index.md to _benchmark/workloads/reference/index.md

Signed-off-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>

* Rename _benchmark/workloads/indices.md to _benchmark/workloads/reference/indices.md

Signed-off-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>

---------

Signed-off-by: Samuel Valdes Gutierrez <valdesgutierrez@gmail.com>
Signed-off-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
2023-10-31 10:18:45 -05:00
Chris Moore 39c0358851
Add documentation for authorization on the REST layer (#4544)
* fix#4381 authz on rest layer

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4381 authz on rest layer

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4381 authz on rest layer

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4381 authz on rest layer

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4381 authz on rest layer

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4381 authz on rest layer

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4381 authz on rest layer

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4381 authz on rest layer

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4381 authz on rest layer

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4381 authz on rest layer

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-09-29 13:37:07 -07:00
Chris Moore 3ec2b9c83b
Adds documentation for permission that provides access to system indexes (#4849)
* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* Fixes some wordings around system index permission access and usage (#4948)

* Fixes some wordings around system index permission access and usage

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

* Addresses PR feedback

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

* Addresses more PR feedback

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

---------

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* Changes the feature flag key and updates some text (#4953)

* Changes the feature flag key and updates description of a consideration

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

* Addresses source PR feedback

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

---------

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4736 system index permission

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
Signed-off-by: Darshit Chanpura <dchanp@amazon.com>
Co-authored-by: Darshit Chanpura <35282393+DarshitChanpura@users.noreply.github.com>
2023-09-11 12:02:25 -07:00
Chris Moore 834a829b62
Add documentation topic to authentication backends section for HTTP basic authentication (#4638)
* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2512 basic for authc backend

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-08-25 16:26:21 -07:00
kolchfa-aws cac580ef00
Refactor term query documentation (#4787)
* Refactor term query documentation

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>

* Refactor term-level query documentation

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>

* fix links

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>

* More examples

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>

* Apply suggestions from code review

Co-authored-by: Chris Moore <107723039+cwillum@users.noreply.github.com>
Signed-off-by: kolchfa-aws <105444904+kolchfa-aws@users.noreply.github.com>

* Add section about expensive queries

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>

* Apply suggestions from code review

Co-authored-by: Nathan Bower <nbower@amazon.com>
Signed-off-by: kolchfa-aws <105444904+kolchfa-aws@users.noreply.github.com>

* More editorial feedback

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>

---------

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>
Signed-off-by: kolchfa-aws <105444904+kolchfa-aws@users.noreply.github.com>
Co-authored-by: Chris Moore <107723039+cwillum@users.noreply.github.com>
Co-authored-by: Nathan Bower <nbower@amazon.com>
2023-08-17 14:38:31 -04:00
Chris Moore 8d80426dad
Add documentation that fixes incorrect audit log setting names (#4653)
* fix#4651-correct setting names

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4651-correct setting names

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4651-correct setting names

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4651-correct setting names

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4651-correct setting names

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-08-03 13:32:49 -07:00
Martin Mörner 3e83b96e01
[DOC] Add missing plugins.security.ssl.http.enabled for PEM paragraph (#4491)
* Add missing plugins.security.ssl.http.enabled for PEM paragraph

TLS is not enabled when this parameter is missing in a X.509/PEM configuration...

Signed-off-by: Martin Mörner <martin.moerner@ibmix.de>

* Implement suggested change

Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
Signed-off-by: Martin Mörner <martin.moerner@ibmix.de>

---------

Signed-off-by: Martin Mörner <martin.moerner@ibmix.de>
Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
2023-07-20 15:06:59 -05:00
lonelyraider ed69170457
removing trigger word weapons (#4586) 2023-07-19 11:54:34 -07:00
Heather Halter 3567e8b90a
replaced stack management (#4541)
Signed-off-by: Heather Halter <hdhalter@amazon.com>
2023-07-11 10:58:23 -07:00
Chris Moore 07c4019e33
Add new zip for example SAML configuration files that reflect latest version (#3665)
* Add new zip for example SAML configuration files that reflect latest version

These changes add a new saml-example-custom.zip file containing `customize-docker-compose.yml`, `customize-config.yml`, and `customize-opensearch-dashboards.yml` files for use as the fully functioning SAML example. These changes also include edits to documentation so that steps accord with the new files.

* fix#618 saml example download

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#618 saml example download

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#618 saml example download

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#618 saml example download

Signed-off-by: cwillum <cwmmoore@amazon.com>

* Apply suggestions from code review

Signed-off-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
Signed-off-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
2023-07-06 16:59:26 -05:00
Darshit Chanpura 31c8e1e0c1
Adds documentation for rest admin api permissions feature (#4257)
* Adds documentation for rest admin api permissions feature

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

* Address PR feedback

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

* Address CI check failure

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

* Addresses PR feedback

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

* Fixes grammar and styles

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>

---------

Signed-off-by: Darshit Chanpura <dchanp@amazon.com>
2023-06-28 12:13:35 -07:00
Chris Moore 389bb53ba6
fix#4315 fix sec config example (#4327)
Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-06-13 14:06:46 -07:00
Chris Moore 9a8995d691
Add documentation for API rate limiting (#4287)
* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4171 api rate limit

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-06-12 18:23:07 -07:00
Chris Moore 12d04a1378
Add documentation for score based password estimator settings (#4267)
* fix#4088 score based pw estimator

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4088 score based pw estimator

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4088 score based pw estimator

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4088 score based pw estimator

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4088 score based pw estimator

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-06-07 15:26:34 -07:00
Chris Moore 9f4b362dbf
Add documentation for validating JWT with JWKS (#4162)
* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#4050 jwks for JWT + reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-06-01 11:51:02 -07:00
Heather Halter 837112f9b6
Fixes to redirects (#4195)
* redirects

Signed-off-by: Heather Halter <hdhalter@amazon.com>

* fixedformat

Signed-off-by: Heather Halter <hdhalter@amazon.com>

* fixbrokenlink

Signed-off-by: Heather Halter <hdhalter@amazon.com>

* fixbrokenlink

Signed-off-by: Heather Halter <hdhalter@amazon.com>

---------

Signed-off-by: Heather Halter <hdhalter@amazon.com>
2023-05-26 14:48:31 -07:00
Adam Gabryś b52424e67b
Describe SAML supported private key format and encryption algorithm (#1855)
OpenSearch allows signing requests by using a private key in the PKCS#8 format. If a user wants to use an encrypted key, the key must be encrypted with a PKCS#12-compatible algorithm.

The `SAML -> Request signing` documentation is extended with the requirements. It should save time of the customers who use wrong key formats or a good key format, but encrypted with an unsupported algorithm (e.g. PKCS#5 2.0 compatible algorithm).

Signed-off-by: Adam Gabryś <adam.gabrys@live.com>
2023-05-18 12:08:11 -05:00
Heather Halter ee7d1efd02
More redirects and spelling fixes (#4093)
* redirects and spelling

Signed-off-by: Heather Halter <hdhalter@amazon.com>

* Update _observing-your-data/ad/index.md

Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
Signed-off-by: Heather Halter <HDHALTER@AMAZON.COM>

* Update _observing-your-data/ad/index.md

Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
Signed-off-by: Heather Halter <HDHALTER@AMAZON.COM>

* Update _search-plugins/knn/index.md

Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
Signed-off-by: Heather Halter <HDHALTER@AMAZON.COM>

---------

Signed-off-by: Heather Halter <hdhalter@amazon.com>
Signed-off-by: Heather Halter <HDHALTER@AMAZON.COM>
Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
2023-05-17 09:57:14 -07:00
Heather Halter e9db68d327
redirect updates (#4061)
* redirect updates

Signed-off-by: Heather Halter <hdhalter@amazon.com>

* Update _search-plugins/sql/ppl/syntax.md

Co-authored-by: kolchfa-aws <105444904+kolchfa-aws@users.noreply.github.com>
Signed-off-by: Heather Halter <HDHALTER@AMAZON.COM>

---------

Signed-off-by: Heather Halter <hdhalter@amazon.com>
Signed-off-by: Heather Halter <HDHALTER@AMAZON.COM>
Co-authored-by: kolchfa-aws <105444904+kolchfa-aws@users.noreply.github.com>
2023-05-11 15:48:29 -07:00
astephanus 1fb5252cd6
Adds collections landing page configuration and navigation header linking (#3812)
* Adds collections landing page configuration and navigation header linking

Signed-off-by: Aaron Stephanus <taoist.futility@pm.me>

* Removes unnecessary collection property from the configuration.

Signed-off-by: Aaron Stephanus <taoist.futility@pm.me>

* Adds links to navigation collection headers to collection index pages based on the collection name

Signed-off-by: Aaron Stephanus <taoist.futility@pm.me>

* Hide index pages from view and add info to formatting guide

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>

---------

Signed-off-by: Aaron Stephanus <taoist.futility@pm.me>
Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>
Co-authored-by: Fanit Kolchina <kolchfa@amazon.com>
2023-05-11 13:56:08 -04:00
Heather Halter 2bc05adb72
more redirect changes 5 (#4028)
Signed-off-by: Heather Halter <hdhalter@amazon.com>
2023-05-08 08:07:01 -07:00
Chris Moore a32766e765
Fix actionsgroups API example response and cleanup topic generally (#3963)
* fix#3751 Sec API cleanup

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3751 Sec API cleanup

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3751 Sec API cleanup

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3751 Sec API cleanup

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-05-04 14:11:45 -07:00
kolchfa-aws 8463c8f278
Correct plugin capitalization (#3838)
* Correct plugin capitalization

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>

* Revert cluster-stats because the name is in response

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>

* Revert cluster-stats once more

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>

---------

Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>
2023-05-04 11:11:54 -04:00
Chris Moore 2d20f539ec
Fix cookie-splitting setting example for SAML backend documentation (#3949)
* fix#3947 cookie splitting fix

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3947 cookie splitting fix

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-05-03 10:05:29 -07:00
Chris Moore 773559ac75
Add new settings for SAML and OIDC that allow for cookie splitting (#3807)
* fix#3691 cookie spitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3691 cookie spitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3691 cookie spitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3691 cookie spitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3691 cookie splitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3691 cookie spitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-04-24 13:42:44 -07:00
Chris Moore e3c6bbdb74
Add documentation for dynamic configuration of tenancy in Dashboards (#3694)
* fix#2562 start for dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 start for dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-04-21 13:22:49 -07:00
Chris Moore 89b16a9925
Add path to the script for the securityadmin.sh troubleshooting topic (#3645)
* fix missing securityadmin path

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix missing securityadmin path

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix missing securityadmin path

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix missing securityadmin path

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix missing securityadmin path

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-04-05 10:35:24 -07:00
Chris Moore ede72716a5
Add Security information to Security Analytics documentation (#3184)
* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3183-sec-for-sec-a

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3183-sec-for-sec-a

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3183 for merge main

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3183 fixing links-breaking links

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3183-sec-for-sec-a

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-04-05 09:53:30 -07:00
Jakob 273cdcdd69
Remove LICENSE from possible endpint list (#2907)
Signed-off-by: Jakob Hahn <jakob.hahn@hetzner.com>
2023-03-29 15:43:39 -05:00
Chris Moore 15d324d30c
Add documentation for jwt_clock_skew_tolerance_seconds setting that resolves authentication errors (#3251)
* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-03-28 13:48:18 -07:00
Chris Moore 85c3f915de
Add documentation to rename opensearch_dashboards predefined roles to kibana (#3426)
* fix#2723-OSD-kibana-roles

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2723-OSD-kibana-roles

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2723-OSD-kibana-roles

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-03-23 08:15:05 -07:00
Luca Nardi 713eac8e67
Change url for opensearch_security.openid.scope configuration setting (#2944)
Signed-off-by: Luca Nardi <luca.nardi@live.it>
2023-03-21 11:52:50 -05:00
kolchfa-aws c9e372f053
Link fix (#3223)
Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>
2023-03-06 11:41:22 -05:00
Chris Moore 6e7de768dd
fix#3022-node-cert-config (#3025)
Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-02-22 14:22:46 -08:00
Fran Moya d22a534773
Moved index_template permission to cluster section (#2964)
* Moved index_template permission to cluster section

Moved index_template permissions from index section to cluster section to avoid confusion when generating roles

Signed-off-by: Fran Moya <33333527+FrcMoya@users.noreply.github.com>

* Update _security/access-control/permissions.md

Co-authored-by: kolchfa-aws <105444904+kolchfa-aws@users.noreply.github.com>

---------

Signed-off-by: Fran Moya <33333527+FrcMoya@users.noreply.github.com>
Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
Co-authored-by: kolchfa-aws <105444904+kolchfa-aws@users.noreply.github.com>
2023-02-20 10:40:07 -06:00
kolchfa-aws 3da7598c0c
Change sample to example (#2972)
Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>
2023-02-20 11:34:20 -05:00
Chris Moore f3833a0fe8
Correct description of encryption functionality managed by Security (#2824)
* fix#2810-crypt-at-rest

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2810-crypt-at-rest

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2810-crypt-at-rest

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2810-crypt-at-rest

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2810-crypt-at-rest

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-02-15 12:53:26 -08:00
Naarcha-AWS 45834d6f78
Once more... Managing, Monitoring, Tuning. (#2653)
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
2023-02-06 11:48:25 -06:00
Naarcha-AWS 6ebd6cfbcf
Add redirects for recent TOC changes (#2577)
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
2023-02-02 17:48:13 -06:00
Chris Moore d04e88b496
Reorganize Configuration section of the Security TOC (#2212)
* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* Rename security section. Fix links. Add redirects

Signed-off-by: Naarcha-AWS <naarcha@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
Co-authored-by: Naarcha-AWS <naarcha@amazon.com>
2023-01-27 10:12:47 -08:00