Craig Perkins

icon company AWS icon location Boston, MA icon location OpenSearch Security. AWS. There are two hard problems in CS: 1) cache invalidation, 2) naming things and 3) off-by-one errors

Results 418 comments of Craig Perkins

[FEATURE] Dynamic Sign in options for OpenSearch Dashboards

Thank you @kamingleung. See my answers below. The documentation on multi-auth on the documentation website is pretty extensive: https://opensearch.org/docs/latest/security/configuration/multi-auth/ 1. This feature would not enable or disable the authenticators on...

[FEATURE] Dynamic Sign in options for OpenSearch Dashboards

@davidosorno Thank you for providing the branches. Its awesome to see the feature working to change the signin options from the admin pages! A couple of items: 1. For the...

[FEATURE] Dynamic Sign in options for OpenSearch Dashboards

@davidosorno Let's keep that in, but I think it would be possible to remove that restriction in the future. Curious, if you were to remove that restriction and setup 2...

[FEATURE] Dynamic Sign in options for OpenSearch Dashboards

> should we include the Anonymous option by default in SignIn options or should we include it only if it is enable in config.yml file? Only if its enabled. It...

[FEATURE] Dynamic Sign in options for OpenSearch Dashboards

@davidosorno There are static settings (in `opensearch_dashboards.yml`) that can customize these buttons (https://opensearch.org/docs/latest/security/configuration/multi-auth/#customizing-the-sign-in-environment). Those customization settings should also eventually be dynamic and configurable through pages in OSD. IMO we can...

[BUG] install_demo_configuration.[sh|bat] assumeyes behavior not working as expected

`assumeyes` is being handled in the updated installer: https://github.com/opensearch-project/security/blob/main/src/main/java/org/opensearch/security/tools/democonfig/Installer.java#L198-L218 Closing this issue.

[BUG] Dashboard user login problem if user name is same as custom tenant

[Triage] This may be a known issue. @davidlago would you please link to the issue? If there is no documentation, can documentation be created?

[BUG] 2.10 Failing integration tests for GeoSpatial Plugin due no index found: security-auditlog-2023.09.11

Suspicious line from the logs: > [2023-09-12T04:06:33,123][INFO ][o.o.c.m.MetadataDeleteIndexService] [node_name_9200] [security-auditlog-2023.09.12/i5WCBYiSRP-rWdZp2NdjhQ] deleting index **Edit**: Weird, it is trying to index into the audit log the action of it deleting the audit...

[BUG] 2.10 Failing integration tests for GeoSpatial Plugin due no index found: security-auditlog-2023.09.11

Could this try to be deleting the auditlog? https://github.com/opensearch-project/geospatial/blob/main/src/test/java/org/opensearch/geospatial/OpenSearchSecureRestTestCase.java#L178 Have geospatial integ tests run with security before?

[BUG]403 forbidden when trying to retrieve an alias using aliasname with an internal user that is mapped to a role with a restrictive index pattern

[Triage] Thank you for filing this issue @AnanyaBanerjee01. Could you provide details about how to reproduce outside the managed offering? Is the user assigned to a role with a cluster...