elasticsearch icon indicating copy to clipboard operation
elasticsearch copied to clipboard

Published 20 hours ago verified publisher icon elastic

Log unsuccessful attempts to get credentials from web identity tokens as warnings

Open arteam opened this issue 3 years ago • 3 comments

Currently, we only verify that local environment for web identity tokens is correctly set up, but we don't verify whether it's possible to exchange the token to credentials from the STS. If we can't get credentials from the STS, we silently fall back to the EC2 credentials provider. Let's try to log the web identity token auth errors as warnings, so the users get a clear message in the logs in case the STS is unavailable for the ES server.

arteam avatar Jul 04 '22 08:07 arteam

Pinging @elastic/es-distributed (Team:Distributed)

elasticmachine avatar Jul 04 '22 13:07 elasticmachine

Hi @arteam, I've created a changelog YAML for you.

elasticsearchmachine avatar Jul 04 '22 13:07 elasticsearchmachine

@elasticmachine update branch

arteam avatar Aug 03 '22 09:08 arteam

@elasticmachine update branch

arteam avatar Aug 17 '22 11:08 arteam

@elasticmachine update branch

arteam avatar Sep 05 '22 08:09 arteam

@elasticmachine update branch

arteam avatar Sep 06 '22 19:09 arteam

@elasticmachine update branch

arteam avatar Sep 08 '22 13:09 arteam

💚 Backport successful

Status Branch Result
8.4

elasticsearchmachine avatar Sep 08 '22 18:09 elasticsearchmachine