coutoPL
(Mateusz Kołodziejczyk)
June 25, 2020, 2:15pm
21
maybe you should enable debug logs?
# For Elasticsearch
## Overview: The ReadonlyREST Suite
ReadonlyREST is a light weight Elasticsearch plugin that adds encryption, authentication, authorization and access control capabilities to Elasticsearch embedded REST API. The core of this plugin is an ACL engine that checks each incoming request through a sequence of **rules** a bit like a firewall. There are a dozen rules that can be grouped in sequences of blocks and form a powerful representation of a logic chain.
The Elasticsearch plugin known as `ReadonlyREST Free` is released under the GPLv3 license, or alternatively, a commercial license \(see [ReadonlyREST Embedded](https://readonlyrest.com/embedded)\) and lays the technological foundations for the companion Kibana plugin which is released in two versions: [ReadonlyREST PRO](https://readonlyrest.com/pro) and [ReadonlyREST Enterprise](https://readonlyrest.com/enterprise).
Unlike the Elasticsearch plugin, the Kibana plugins are commercial only. But rely on the Elasticsearch plugin in order to work.
For a description of the Kibana plugins, skip to the [dedicated documentation page](kibana/) instead.
### ReadonlyREST Free plugin for Elasticsearch
In this document we are going to describe how to operate the Elasticsearch plugin in all its features. Once installed, this plugin will greatly extend the Elasticsearch HTTP API \(port 9200\), adding numerous extra capabilities:
* **Encryption**: transform the Elasticsearch API from HTTP to HTTPS
* **Authentication**: require credentials
* **Authorization**: declare groups of users, permissions and partial access to indices.
* **Access control**: complex logic can be modeled using an ACL \(access control list\) written in YAML.
This file has been truncated. show original
Diana
(Diana Slavescu)
June 26, 2020, 7:40am
22
Hello,
I realized i made the upgrade to v 1.20.0 just for KB ROR. So, i made a new rebuild, making an upgrade for ES ROR also. By doing this, i am back to the proxy auth/basic auth login issue @sscarduzio fixed before…
sscarduzio
(Simone Scarduzio)
June 26, 2020, 6:23pm
23
So when you logout from proxy user, you’re logged in back again in 1.20.0? Will have a look
Diana
(Diana Slavescu)
June 29, 2020, 7:28am
24
Hi,
I mean this issue:
when a login request comes through the proxy, the x-forwarded-user header will take priority over login form credentials.
Thanks!
sscarduzio
(Simone Scarduzio)
July 3, 2020, 10:51am
26
We will take care of this over the weekend.
Diana
(Diana Slavescu)
July 7, 2020, 11:50am
27
Hello,
Do you have a solution for this yet?
Thanks,
Diana
sscarduzio
(Simone Scarduzio)
July 7, 2020, 2:32pm
28
Hi Diana, yes we know where the bug is, we are wrapping up a fix. Thanks for your patience.