Andrey Pleskach
Andrey Pleskach
[FEATURE] Add posibility to create hidden security entities (roles mapping, roles, etc) via REST API
Currently it is impossible to create hidden security entities using REST API, but it is possible to delete them which is confusing. **What solution would you like?** Add possibility to...
**Is your feature request related to a problem?** To finally rid off Apache HTTP 4.x we need to bump OpenSAML to version 5.0 which does not work with JDK 11...
**Is your feature request related to a problem?** Add a new REST admin endpoint to update the configuration of multiple configuration types. Such endpoint will be helpful to update internal...
**Is your feature request related to a problem?** During review of https://github.com/opensearch-project/security/pull/2927, @cwperks mentioned that the main reason of why we still use HTTP commons 4 is `SamlHTTPMetadataResolver` which reads...
**Is your feature request related to a problem?** I'm not sure that we support confiig V6 models maybe it is time to remove it? **What solution would you like?** Remove...
In some cases account does not have permissions to read container properties or create one but has all permissions to do CRUD operations inside the container, e.g SAS tokens. To...
Added mTLS support to set up OpenSearch connection with client certificate. There are 2 groups of settings for SSL certificates: - Using PEM files - Using JDK trust and keys...
**Is your feature request related to a problem?** Observed here https://github.com/opensearch-project/security/issues/4144 and https://github.com/opensearch-project/security/issues/1763 Currently existing endpoint `PUT /_plugins/_security/api/ssl/{type}/reloadcerts` reloads SSL certificates only on the corrdinator node but not for the...
Observed here: https://github.com/opensearch-project/security/issues/4393 The reason of a such behave is that we do not set default values for newly created configuration entities. Example: HTTP GET result for roles: ```json "testadmin":...
**What is the bug?** During refactoring of Action group REST API test. If more than one test updates static action group. The test which executes after the previous one creates...