Commit Graph

67 Commits

Author SHA1 Message Date
Chris Moore 2d20f539ec
Fix cookie-splitting setting example for SAML backend documentation (#3949)
* fix#3947 cookie splitting fix

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3947 cookie splitting fix

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-05-03 10:05:29 -07:00
Chris Moore 773559ac75
Add new settings for SAML and OIDC that allow for cookie splitting (#3807)
* fix#3691 cookie spitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3691 cookie spitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3691 cookie spitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3691 cookie spitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3691 cookie splitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3691 cookie spitting

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-04-24 13:42:44 -07:00
Chris Moore e3c6bbdb74
Add documentation for dynamic configuration of tenancy in Dashboards (#3694)
* fix#2562 start for dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 start for dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2562 dynamic config

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-04-21 13:22:49 -07:00
Chris Moore 89b16a9925
Add path to the script for the securityadmin.sh troubleshooting topic (#3645)
* fix missing securityadmin path

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix missing securityadmin path

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix missing securityadmin path

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix missing securityadmin path

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix missing securityadmin path

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-04-05 10:35:24 -07:00
Chris Moore ede72716a5
Add Security information to Security Analytics documentation (#3184)
* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3183-sec-for-sec-a

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3183-sec-for-sec-a

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3183 for merge main

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3183 fixing links-breaking links

Signed-off-by: cwillum <cwmmoore@amazon.com>

* sec permissions for SA

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3183-sec-for-sec-a

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-04-05 09:53:30 -07:00
Jakob 273cdcdd69
Remove LICENSE from possible endpint list (#2907)
Signed-off-by: Jakob Hahn <jakob.hahn@hetzner.com>
2023-03-29 15:43:39 -05:00
Chris Moore 15d324d30c
Add documentation for jwt_clock_skew_tolerance_seconds setting that resolves authentication errors (#3251)
* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#3220 auth fail from clock skew

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-03-28 13:48:18 -07:00
Chris Moore 85c3f915de
Add documentation to rename opensearch_dashboards predefined roles to kibana (#3426)
* fix#2723-OSD-kibana-roles

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2723-OSD-kibana-roles

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2723-OSD-kibana-roles

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-03-23 08:15:05 -07:00
Luca Nardi 713eac8e67
Change url for opensearch_security.openid.scope configuration setting (#2944)
Signed-off-by: Luca Nardi <luca.nardi@live.it>
2023-03-21 11:52:50 -05:00
kolchfa-aws c9e372f053
Link fix (#3223)
Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>
2023-03-06 11:41:22 -05:00
Chris Moore 6e7de768dd
fix#3022-node-cert-config (#3025)
Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-02-22 14:22:46 -08:00
Fran Moya d22a534773
Moved index_template permission to cluster section (#2964)
* Moved index_template permission to cluster section

Moved index_template permissions from index section to cluster section to avoid confusion when generating roles

Signed-off-by: Fran Moya <33333527+FrcMoya@users.noreply.github.com>

* Update _security/access-control/permissions.md

Co-authored-by: kolchfa-aws <105444904+kolchfa-aws@users.noreply.github.com>

---------

Signed-off-by: Fran Moya <33333527+FrcMoya@users.noreply.github.com>
Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
Co-authored-by: kolchfa-aws <105444904+kolchfa-aws@users.noreply.github.com>
2023-02-20 10:40:07 -06:00
kolchfa-aws 3da7598c0c
Change sample to example (#2972)
Signed-off-by: Fanit Kolchina <kolchfa@amazon.com>
2023-02-20 11:34:20 -05:00
Chris Moore f3833a0fe8
Correct description of encryption functionality managed by Security (#2824)
* fix#2810-crypt-at-rest

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2810-crypt-at-rest

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2810-crypt-at-rest

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2810-crypt-at-rest

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2810-crypt-at-rest

Signed-off-by: cwillum <cwmmoore@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
2023-02-15 12:53:26 -08:00
Naarcha-AWS 45834d6f78
Once more... Managing, Monitoring, Tuning. (#2653)
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
2023-02-06 11:48:25 -06:00
Naarcha-AWS 6ebd6cfbcf
Add redirects for recent TOC changes (#2577)
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
2023-02-02 17:48:13 -06:00
Chris Moore d04e88b496
Reorganize Configuration section of the Security TOC (#2212)
* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#2155-sec-toc-config-reorg

Signed-off-by: cwillum <cwmmoore@amazon.com>

* Rename security section. Fix links. Add redirects

Signed-off-by: Naarcha-AWS <naarcha@amazon.com>

---------

Signed-off-by: cwillum <cwmmoore@amazon.com>
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
Co-authored-by: Naarcha-AWS <naarcha@amazon.com>
2023-01-27 10:12:47 -08:00