serverless-es-logs icon indicating copy to clipboard operation
serverless-es-logs copied to clipboard

Published 20 hours ago verified publisher icon daniel-cottone

Basic Authentication Support

Open ayan-usgs opened this issue 3 years ago • 2 comments

🐞 Problem When an AWS Elasticsearch cluster is configured to use a master-user, lambdas attempting to load data from CloudWatch need to authenticate.

🎯 Goal It will help users keep their Elasticsearch clusters secure from unauthorized additions of data.

💡 Possible Solutions Perhaps in two additional arguments can be optionally passed to esLogs for the username and password. They can then be used to facilitate basic authentication.

ayan-usgs avatar Nov 17 '20 20:11 ayan-usgs

Hey @ayan-usgs, thanks for your suggestion. I think this would be a good idea. Probably what we ought to do is have some configurable authentication method, and then depending on which a user chooses we would need additional configuration. Right now the only authentication that is supported is signing the request using the lambda's secret access key. I still think that should be the default, but we ought to support other methods of authentication as well.

daniel-cottone avatar Nov 18 '20 13:11 daniel-cottone

Probably what we ought to do is have some configurable authentication method, and then depending on which a user chooses we would need additional configuration

That sounds great!

ayan-usgs avatar Nov 18 '20 14:11 ayan-usgs