security-dashboards-plugin

security-dashboards-plugin copied to clipboard

[FEATURE] Permissions lists CLUSTER_PERMISSIONS/INDEX_PERMISSIONS should be retrieved at runtime from plugins

6

**Is your feature request related to a problem?** Developers in the OpenSearch project have to update a file outside their repository to update the list of permissions that are shown...

peternied

[BUG] Multiple AuthC LDAP Requests

1

**What is the bug?** When logging in using OpenSearch Dashboards, multiple separate LDAP authentication requests (authc) are being made for a single login within a second of one another. The...

WatsCo

[BUG] Leading and trailing spaces are captured in the Backend roles added in mapped users

1

**What is the bug?** Leading and trailing spaces are captured in the Backend roles added in mapped users. It is really difficult for a user to know that permissions have...

ps48

[BUG] Dashboard not giving an option to select a tenant and defaultRoute does not seem to be in sync with default tenant (last selected tenant)

16

**Describe the bug** We have multiple problems with dashboard access related to multi tenancy: 1. Dashboard doesn't not give an option to select a tenant every single time, instead it...

deepak-rsystems

[BUG] Default route causes "could not locate that dashboard" error

1

**What is the bug?** Default route results in "could not locate that dashboard" Error after login when current tenant doesn't match the default tenant. **How can one reproduce the bug?**...

reformit

[BUG] Security cookie could be too large when using JWT auth type

5

**What is the bug?** When using JWT auth type, security cookie is too large if JWT token is big, browser refuse to store it (more than 4kb) looks like https://github.com/opensearch-project/security-dashboards-plugin/pull/1352...

pheex

The integration tests have lately been failing due to [lack of disk space on the Github runners](https://github.com/opensearch-project/security-dashboards-plugin/issues/1611). In https://github.com/opensearch-project/security-dashboards-plugin/pull/1613, new steps were added for both the Linux runner and Windows...

cwperks

[1.3] Dependencies in 1.3 branch that cannot be updated (CVE Related)

3

### Description Let us use this issue as a placeholder to capture some of the transient dependencies in 1.3 branch. ### Here are the transient dependencies in 1.3/1.x branches that...

RyanL1997

[BUG] Users can be created the violate the policy defined below the text field

4

**What is the bug?** A clear and concise description of the bug. **How can one reproduce the bug?** Steps to reproduce the behavior: 1. Go to the user creation page...

peternied

As part of the PR to support windows CI checks in this repo it was identified that there were issues bringing up the node-based SAML IdP in the windows runner....

cwperks