security-dashboards-plugin

security-dashboards-plugin copied to clipboard

[FEATURE] Inactivity timer

4

### Is your feature request related to a problem? Please describe. Opensearch-dashboard features a refresh option that refreshes dashboard by a user-defined time interval. Using this feature can cause the...

HuanLiangAFS

[BUG] multitenancy disabled still makes calls for tenancy

5

**What is the bug?** On start up, https://github.com/opensearch-project/security-dashboards-plugin/blob/main/server/plugin.ts#L191 calls out to get tenant info. But if I do not have tenancy enabled on my cluster and disable multitenancy in my...

kavilla

Dynamic Sign in options

4

### Description **New Feature** Allow admins to define the sign-in options that will be displayed on OpenSearch Dashboard login page. There are couple of sign-in options defined in [Security documentation](https://opensearch.org/docs/latest/security/configuration/multi-auth/),...

davidosorno

[Multiple Datasource] Support scenarios where datasource is running without security or without FGAC

1

**Is your feature request related to a problem?** With multiple datasources, the same OSD installation can be connected to multiple backend clusters. This issue is to track supporting and testing...

cwperks

[FEATURE] Capability to hide `View roles and identities` for readonly role.

3

**Is your feature request related to a problem?** For a readonly user dashboard the `View roles and identities` that shows the information about role, backend mapped role should be hidden...

prudhvigodithi

[BUG] Error - Invalid username/password for Opensearch dashboard for a valid user when clientauth_mode is set to "REQUIRE"

4

**Describe the bug** For security, I want to make enable client certificate authentication mandatory on the OpenSearch nodes. Following [Client certificate authentication - OpenSearch documentation 3](https://opensearch.org/docs/latest/security-plugin/configuration/client-auth/) I set: plugins.security.ssl.http.clientauth_mode: "REQUIRE"...

nitinjagjivan

Kerberos Auth does not exist

13

**Is your feature request related to a problem? Please describe.** Upon investigation, it seems like Kerberos authentication was not added to Security Dashboard Plugin, despite existing in OpenSearch. Specifically, according...

Naarcha-AWS

[FEATURE] Multi-auth dashboards support for JWT

9

**Is your feature request related to a problem?** **What solution would you like?** Hello we can set order of auth in `opensearch` ```yml config: dynamic: http: anonymous_auth_enabled: false xff: enabled:...

10000-ki

[FEATURE] Add check for both workspace and multi tenancy enabled

4

**Is your feature request related to a problem?** The workspace feature will have similar functionality with multi tenancy. If they are both turned on that may confuse user, as there...

Hailong-am

[BUG] Dashboard fails with error 502 Bad Gateway when using OIDC-based authn with Keycloak

5

**What is the bug?** The Dashboard application crashes with error 502 Bad Gateway when an user authenticated & authorized by Keycloak tries to access Opensearch. **How can one reproduce the...

mcaliandro