Commit Graph

75 Commits

Author SHA1 Message Date
Naarcha-AWS ab5654cc36
Edits to PR #804, TLS settings (#1071)
* add note regarding required use of TLS transport

"basic usage" doesn't mention that the securityadmin.sh command will fail outright if "plugins.security.ssl.http.enabled" is set to "false"

Signed-off-by: David Vassallo <davevassallo@gmail.com>

* Update _security-plugin/configuration/security-admin.md

Signed-off-by: David Vassallo <davevassallo@gmail.com>

Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>

* Add one copy edit

Signed-off-by: Naarcha-AWS <naarcha@amazon.com>

Signed-off-by: David Vassallo <davevassallo@gmail.com>
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
Co-authored-by: David Vassallo <davevassallo@gmail.com>
2022-09-10 10:31:48 -05:00
David Vassallo 0b624cbaf2
add note regarding required use of TLS transport (#804)
* add note regarding required use of TLS transport

"basic usage" doesn't mention that the securityadmin.sh command will fail outright if "plugins.security.ssl.http.enabled" is set to "false"

Signed-off-by: David Vassallo <davevassallo@gmail.com>

* Update _security-plugin/configuration/security-admin.md

Signed-off-by: David Vassallo <davevassallo@gmail.com>

Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>

Signed-off-by: David Vassallo <davevassallo@gmail.com>
Co-authored-by: Naarcha-AWS <97990722+Naarcha-AWS@users.noreply.github.com>
2022-09-01 11:19:15 -05:00
Chris Moore aa5823d61c
Add documentation for the plugins.security.cache.ttl_minutes property (#1039)
* auth cache timeout prop

Signed-off-by: cwillum <cwmmoore@amazon.com>

* auth cache timeout prop

Signed-off-by: cwillum <cwmmoore@amazon.com>

Signed-off-by: cwillum <cwmmoore@amazon.com>
2022-09-01 08:57:12 -07:00
Chris Moore b9838dfd87
Missing documentation for the plugins.security.allow_default_init_securityindex property (#919)
* “fix#676-allow_default_init_securityindex”

Signed-off-by: cwillum <cwmmoore@amazon.com>

* “fix#676-allow_default_init_securityindex”

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#676-allow_default_init_securityindex

Signed-off-by: cwillum <cwmmoore@amazon.com>

* fix#676-allow_default_init_securityindex

Signed-off-by: cwillum <cwmmoore@amazon.com>

Signed-off-by: cwillum <cwmmoore@amazon.com>
2022-08-29 13:17:36 -07:00
Craig Perkins f1d1dde8e5
resolve_hostname should be singular (#1019)
Signed-off-by: Craig Perkins <cwperx@amazon.com>

Signed-off-by: Craig Perkins <cwperx@amazon.com>
2022-08-29 13:12:35 -05:00
Craig Perkins c48cf8c600
Fix example using custom_attr_whitelist and custom_attr_maxval_len in ldap documentation (#981)
Signed-off-by: Craig Perkins <cwperx@amazon.com>

Signed-off-by: Craig Perkins <cwperx@amazon.com>
2022-08-25 14:08:45 -05:00
Craig Perkins 906a81bca7
Update documentation from opensearch_security_roles to opendistro_security_roles (#892)
Signed-off-by: Craig Perkins <cwperx@amazon.com>

Signed-off-by: Craig Perkins <cwperx@amazon.com>
2022-08-23 20:55:30 -05:00
Peter Nied 1640b3482e
Fix setting name for LDAP custom attribute filter (#912)
Signed-off-by: Peter Nied <petern@amazon.com>

Signed-off-by: Peter Nied <petern@amazon.com>
2022-08-23 09:49:51 -05:00
Craig Perkins 206e97a2b7
Change /_plugins/_security/.. routes to /_opendistro/_security/... for SAML until plugins route is supported (#877)
Signed-off-by: Craig Perkins <cwperx@amazon.com>

Signed-off-by: Craig Perkins <cwperx@amazon.com>
2022-08-11 17:41:30 -05:00
Jeff Huss 9f3434c10c
Added reference to RFC2818 along with guidance to add subjectAltNames… (#748)
* Added reference to RFC2818 along with guidance to add subjectAltNames ext when generating certs

Signed-off-by: jeffhuss <jeffhuss@amazon.com>

* Cleaned up wording in cert generation section

Wording before was redundant and there was a fragment sentence left in.  I cleaned that up to make it readable.

Signed-off-by: jeffhuss <jeffhuss@amazon.com>

* Spot fixes of terms, added SAN guidance and references and cleaned up sample script

Signed-off-by: jeffhuss <jeffhuss@amazon.com>

* Updated sample script to clean up the extension files too

Signed-off-by: jeffhuss <jeffhuss@amazon.com>

* Cleaned up formatting, removed SAN reference in admin cert steps

Signed-off-by: jeffhuss <jeffhuss@amazon.com>

* Removed extra word from node cert steps

Signed-off-by: jeffhuss <jeffhuss@amazon.com>

* Removed reference to admin.ext from sample script since it doesn't exist anymore

Signed-off-by: jeffhuss <jeffhuss@amazon.com>
2022-08-02 14:38:03 -07:00
Peter Nied 5d5729c4c0
Update securityonfig path based on path reorganization (#763)
Signed-off-by: Peter Nied <petern@amazon.com>
2022-07-07 12:08:28 -05:00
Naarcha-AWS 1067dad114
Correct branch names for security and logstash repos (#702)
* Add back Data Prepper 1.4 docs (#698)

* Add back Data Prepper 1.4 docs

Signed-off-by: Naarcha-AWS <naarcha@amazon.com>

* Fix Data Prepper Docker image

Signed-off-by: Naarcha-AWS <naarcha@amazon.com>

* Update GitHub links to `main` branches rather than `master` where it has been changed

Signed-off-by: Naarcha-AWS <naarcha@amazon.com>

Co-authored-by: Aaron Carson <aaron@aaroncarson.co.uk>
2022-06-23 10:14:39 -05:00
Brian Saghy fcb84af481 Fix server.host to valid address to fix issue with Opensearch-Dashboards 2.0
Signed-off-by: Brian Saghy <brian@finishbot.com>
2022-06-15 14:53:54 -04:00
pawelw1 fcd6b293f1
securityadmin.sh default port change
Signed-off-by: pawelw1 <pawel.wlodarczyk@eliatra.com>
2022-06-07 18:35:16 +01:00
Naarcha-AWS de82c913c5
Merge pull request #499 from jaycci/security-dashboards-plugin-PR929
Documentation for security-dashboards-plugin PR929
2022-05-25 15:53:21 -05:00
Naarcha-AWS aa9f88e37a
Merge pull request #509 from opensearch-project/whitelist-replace2.0
Add allowlist for more inclusive nomenclature
2022-05-03 14:50:25 -05:00
Naarcha-AWS c6f7341993 Break up allowlist
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
2022-05-03 14:49:55 -05:00
Naarcha-AWS 28194d5653 Add CamelCase:
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
2022-05-03 14:36:26 -05:00
Naarcha-AWS 9194940dbf Add feedback.
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
2022-04-25 12:46:16 -05:00
Darshit Chanpura 2e5bcf1924 Updates all documentation relevant to securityconfig folder name change in the security plugin build flow
Signed-off-by: Darshit Chanpura <dchanp@amazon.com>
2022-04-14 22:47:09 -04:00
Naarcha-AWS e5ed103a1a Add allowlist for more inclusive nomenclature
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
2022-04-14 12:27:27 -05:00
Jean-Christian Simonetti 8cb010552e Documentation for security-dashboards-plugin PR929
Signed-off-by: Jean-Christian Simonetti <github@elysiria.fr>
2022-04-09 11:33:50 +02:00
Naarcha-AWS 05b4aff4ee Add feedback
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
2022-02-23 13:30:59 -06:00
Naarcha-AWS 6885fe37af Fix typos
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
2022-02-22 15:11:59 -06:00
Naarcha-AWS 8c61db15df Add warning about Kerberos support in Dashboards
Signed-off-by: Naarcha-AWS <naarcha@amazon.com>
2022-02-22 15:08:50 -06:00
Anthony7774 fc077224a7 Update to LDAP docs for multiple user and role bases
Signed-off-by: Anthony7774 <anton.rubin@eliatra.com>
2022-01-28 10:53:17 +00:00
Miki 13dd9a4e02 Separate OpenSearch Dashboards version from that of OpenSearch
Signed-off-by: Miki <miki@amazon.com>
2021-12-22 11:27:02 -08:00
keithhc2 78b8930f58 Fixed cert names
Signed-off-by: keithhc2 <keithhc2@users.noreply.github.com>
2021-12-15 13:13:18 -08:00
Ashwin Kumar d991dd48c5
Merge pull request #234 from opensearch-project/rev_parameter
Added -rev parameter to securityadmin.sh
2021-10-20 13:34:42 -07:00
Sebas-h 0d6010716a
Fix authc configuration format. 2021-10-18 12:47:34 +02:00
MrpPolo cc6f01b92c
Update proxy.md
Update opensearch_dashboards setting to latest version.
2021-10-14 14:35:57 +08:00
ashwinkumar12345 866ab1a039 first draft 2021-10-13 12:13:38 -07:00
aetter 65d2ef4860 Re-add SAML example 2021-09-29 09:29:41 -07:00
aetter d4c20f0402 Re-add LDAP Docker example
Update Docker Compose file
2021-09-28 15:33:48 -07:00
keithhc2 c85fd21b4f Addressed comments 2021-09-27 10:07:37 -07:00
keithhc2 b12dab6705 Add descriptions to config yaml files and added some security APIs 2021-09-24 14:13:26 -07:00
aetter 21ae64aac9 Move to h2 2021-09-17 14:17:21 -07:00
aetter 243c7315e4 Update generate-certificates.md 2021-09-08 08:34:57 -07:00
aetter 00d2db4917 De-duplicate content
Point readers to the more comprehensive content: https://github.com/opensearch-project/documentation-website/issues/144
2021-08-18 14:17:41 -07:00
aetter b695c750ad Improve self-signed certificate script 2021-08-17 12:46:50 -07:00
Andrew Etter 294da5c0df
Merge pull request #135 from opensearch-project/security-admin-script-improvements
Improve securityadmin.sh content
2021-08-16 08:32:36 -07:00
Keith Chan f7093ffd8f
Changed `plugins` to `opensearch_security` 2021-08-13 11:12:23 -07:00
aetter d1a065587c Fix typo 2021-08-12 16:29:17 -07:00
aetter 6f32dce469 Merge branch 'main' into remove-redirects 2021-08-12 14:50:28 -07:00
Miki 634db90e9b Link checker plugin and some fixes to URLs
Signed-off-by: Miki <mehranb@amazon.com>
2021-08-12 14:45:04 -07:00
aetter 0d58bcf854 Remove outdated redirects 2021-08-12 14:34:31 -07:00
aetter a75fbf62dc Improve securityadmin.sh content
More warnings around usage, better sample commands
2021-08-12 14:25:46 -07:00
Miki ba5bfa429f Fix paths in `redirect_from` data
Signed-off-by: Miki <mehranb@amazon.com>
2021-08-04 11:16:37 -07:00
keithhc2 dc2f349d7e Addressed comment and added note about users and roles 2021-07-28 13:21:25 -07:00
keithhc2 30df98e078 Added whitelist.yml 2021-07-28 11:41:08 -07:00