Kibana ROR 1.19.5 issue

coutoPL · June 25, 2020, 2:15pm

maybe you should enable debug logs?

beshu-tech/readonlyrest-docs/blob/master/elasticsearch.md#troubleshooting

# For Elasticsearch

## Overview: The ReadonlyREST Suite

ReadonlyREST is a light weight Elasticsearch plugin that adds encryption, authentication, authorization and access control capabilities to Elasticsearch embedded REST API. The core of this plugin is an ACL engine that checks each incoming request through a sequence of **rules** a bit like a firewall. There are a dozen rules that can be grouped in sequences of blocks and form a powerful representation of a logic chain.

The Elasticsearch plugin known as `ReadonlyREST Free` is released under the GPLv3 license, or alternatively, a commercial license \(see [ReadonlyREST Embedded](https://readonlyrest.com/embedded)\) and lays the technological foundations for the companion Kibana plugin which is released in two versions: [ReadonlyREST PRO](https://readonlyrest.com/pro) and [ReadonlyREST Enterprise](https://readonlyrest.com/enterprise).

Unlike the Elasticsearch plugin, the Kibana plugins are commercial only. But rely on the Elasticsearch plugin in order to work.

For a description of the Kibana plugins, skip to the [dedicated documentation page](kibana/) instead.

### ReadonlyREST Free plugin for Elasticsearch

In this document we are going to describe how to operate the Elasticsearch plugin in all its features. Once installed, this plugin will greatly extend the Elasticsearch HTTP API \(port 9200\), adding numerous extra capabilities:

* **Encryption**: transform the Elasticsearch API from HTTP to HTTPS
* **Authentication**: require credentials
* **Authorization**: declare groups of users, permissions and partial access to indices.
* **Access control**: complex logic can be modeled using an ACL \(access control list\) written in YAML.

This file has been truncated. show original

Diana · June 26, 2020, 7:40am

Hello,

I realized i made the upgrade to v 1.20.0 just for KB ROR. So, i made a new rebuild, making an upgrade for ES ROR also. By doing this, i am back to the proxy auth/basic auth login issue @sscarduzio fixed before…

sscarduzio · June 26, 2020, 6:23pm

So when you logout from proxy user, you’re logged in back again in 1.20.0? Will have a look

Diana · June 29, 2020, 7:28am

Hi,

I mean this issue:

when a login request comes through the proxy, the x-forwarded-user header will take priority over login form credentials.

Thanks!

Diana · July 2, 2020, 10:40am

Hello,

Any updates, please?

Thanks!

sscarduzio · July 3, 2020, 10:51am

We will take care of this over the weekend.

Diana · July 7, 2020, 11:50am

Hello,

Do you have a solution for this yet?

Thanks,
Diana

sscarduzio · July 7, 2020, 2:32pm

Hi Diana, yes we know where the bug is, we are wrapping up a fix. Thanks for your patience.