Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / opensearch-project/security issues and pull requests

#2791 - [BUG] javax.net.ssl.SSLHandshakeException: Received fatal alert: certificate_unknown

Issue - State: open - Opened by zalseryani over 1 year ago - 2 comments
Labels: bug, untriaged

#2790 - add ml model group system index

Pull Request - State: closed - Opened by ylwu-amzn over 1 year ago - 1 comment

#2788 - [AUTOCUT] Integration Test failed for security: 2.8.0 tar distribution

Issue - State: open - Opened by opensearch-ci-bot over 1 year ago - 1 comment
Labels: untriaged, autocut, v2.8.0, integ-test-failure

#2787 - Implements token handlers and tests

Pull Request - State: open - Opened by scrawfor99 over 1 year ago

#2786 - 2704 filter internal and service accounts

Pull Request - State: open - Opened by samuelcostae over 1 year ago

#2785 - Release version 2.8.0

Issue - State: open - Opened by peterzhuamazon over 1 year ago - 1 comment
Labels: release, triaged, v2.8.0

#2784 - [Backport 2.x] Add score based password verification

Pull Request - State: closed - Opened by willyborankin over 1 year ago - 1 comment

#2782 - [Refactor] Build failure due to breaking changes introduced in core

Issue - State: open - Opened by RyanL1997 over 1 year ago - 2 comments
Labels: bug, triaged

#2780 - [Performance] Use a faster serialization protocol within security plugin

Issue - State: open - Opened by parasjain1 over 1 year ago - 8 comments
Labels: enhancement, help wanted, triaged

#2779 - Use proto serialization

Pull Request - State: open - Opened by parasjain1 over 1 year ago

#2778 - Add release notes for 1.3.10

Pull Request - State: closed - Opened by RyanL1997 over 1 year ago

#2775 - Service account manager impl

Pull Request - State: open - Opened by MaciejMierzwa over 1 year ago

#2774 - [Feature/Extension] Rename the term 'extension' into 'on_behalf_of'

Pull Request - State: closed - Opened by RyanL1997 over 1 year ago - 2 comments

#2773 - Store Scheduled Job User Information in an index owned by the Security plugin

Pull Request - State: open - Opened by cwperks over 1 year ago - 2 comments

#2772 - [Extensions] Restrict which transport actions an extension can perform

Issue - State: open - Opened by cwperks over 1 year ago
Labels: enhancement, triaged

#2768 - `deserializeSafeFromHeader` uses `context.getHeader(headerName)` instead of `context.getHeaders()`

Pull Request - State: closed - Opened by parasjain1 over 1 year ago - 5 comments
Labels: backport 2.x

#2766 - [Feature] Add support for required_audience and required_issuer for OIDC auth backend

Issue - State: open - Opened by ramizraza504 over 1 year ago - 5 comments
Labels: bug, triaged

#2765 - Adds a check to skip serialization-deserialization if request is for same node

Pull Request - State: open - Opened by DarshitChanpura over 1 year ago - 6 comments

#2764 - Determine how auth token is generated from security plugin and accessible by core to forward

Issue - State: open - Opened by davidlago over 1 year ago - 3 comments
Labels: triaged

#2763 - [Backport 2.x] Upgrade spring-core from 5.3.26 to 5.3.27

Pull Request - State: closed - Opened by cwperks over 1 year ago - 2 comments

#2762 - Adding tenets to CONTRIBUTING.md

Pull Request - State: closed - Opened by davidlago over 1 year ago - 1 comment

#2760 - [Feature/Extension] About the term check for 'extension'

Issue - State: closed - Opened by RyanL1997 over 1 year ago
Labels: bug, triaged

#2759 - [AUTOCUT] Integration Test failed for security: 2.7.0 tar distribution

Issue - State: closed - Opened by opensearch-ci-bot over 1 year ago - 1 comment
Labels: untriaged, autocut, v2.7.0, integ-test-failure

#2758 - Fix multitency config update

Pull Request - State: closed - Opened by willyborankin over 1 year ago - 6 comments
Labels: backport 2.x, backport 2.7

#2756 - java.lang.IllegalStateException: Username cannot have '|' in the security plugin.

Issue - State: open - Opened by ran2806 over 1 year ago - 4 comments
Labels: triaged

#2755 - [Backport 2.x] Use ExtensionsManager.lookupExtensionSettingsById when verifying exte…

Pull Request - State: closed - Opened by peternied over 1 year ago - 2 comments

#2754 - [AUTOCUT] OS Distribution Build Failed for security-2.8.0

Issue - State: closed - Opened by opensearch-ci-bot over 1 year ago - 3 comments
Labels: autocut, v2.8.0

#2753 - [Feature/Extensions] Authorize rest requests bound to Extensions

Pull Request - State: open - Opened by DarshitChanpura over 1 year ago - 2 comments

#2752 - [Feature/Extensions] Supporting `cluster_permissions` nomenclature

Issue - State: open - Opened by DarshitChanpura over 1 year ago
Labels: triaged

#2751 - [Feature/Extensions] Implement PrivilegeEvaluator on REST Layer.

Issue - State: open - Opened by DarshitChanpura over 1 year ago - 4 comments
Labels: triaged

#2750 - Extension registration

Pull Request - State: closed - Opened by samuelcostae over 1 year ago - 3 comments

#2749 - Use ExtensionsManager.lookupExtensionSettingsById when verifying extension unique id

Pull Request - State: closed - Opened by cwperks over 1 year ago - 6 comments
Labels: backport 2.x

#2748 - Limit the use of extensions term in the codebase

Pull Request - State: closed - Opened by peternied over 1 year ago - 1 comment

#2747 - [BUG] Extensions handshake is failing with TLS after change to utilize `lookupInitializedExtensionById`

Issue - State: closed - Opened by cwperks over 1 year ago - 3 comments
Labels: bug, triaged

#2746 - [Extensions] Create extension point to be able to register security settings into `extensions.yml`

Issue - State: open - Opened by cwperks over 1 year ago - 7 comments
Labels: bug, triaged

#2745 - Sync 1.x with 1.3 branch

Pull Request - State: closed - Opened by peternied over 1 year ago - 1 comment

#2744 - [Backport 2.x] Upgrade spring-core from 5.3.26 to 5.3.27.

Pull Request - State: closed - Opened by opensearch-trigger-bot[bot] over 1 year ago - 2 comments

#2742 - [Flaky Test] Configuration is not available after an update for more than 10 seconds

Issue - State: open - Opened by peternied over 1 year ago - 5 comments
Labels: bug, triaged, flaky-test

#2741 - Use updated method to lookup extension by unique id

Pull Request - State: closed - Opened by cwperks over 1 year ago - 3 comments
Labels: backport 2.x

#2739 - [Backport] [2.x] Update to Gradle 8.1.1 (#2738)

Pull Request - State: closed - Opened by reta over 1 year ago

#2738 - Update to Gradle 8.1.1

Pull Request - State: closed - Opened by reta over 1 year ago - 2 comments
Labels: dependencies, backport 2.x

#2737 - [Manual Backport 2.x] Manually backports auth tokens, service accounts, and multi tenancy changes

Pull Request - State: closed - Opened by scrawfor99 over 1 year ago - 8 comments
Labels: backport 2.7

#2736 - [BUG] DLS filtering is applied to the wrong action

Issue - State: open - Opened by MarrakchiAyoub over 1 year ago - 1 comment
Labels: bug, triaged

#2733 - Role permissions order tool and workflow

Pull Request - State: open - Opened by peternied over 1 year ago

#2732 - update security-analytics roles to add correlation engine apis

Pull Request - State: closed - Opened by sbcd90 over 1 year ago - 2 comments
Labels: backport 2.x

#2731 - [AUTO] Increment version to 2.7.1-SNAPSHOT

Pull Request - State: open - Opened by opensearch-trigger-bot[bot] over 1 year ago - 1 comment

#2730 - [Extensions] Add support for `extension_dns` list in `extensions.yml` file

Issue - State: open - Opened by cwperks over 1 year ago - 4 comments
Labels: enhancement, triaged

#2729 - Add default roles for SQL plugin: PPL and cross-cluster search

Pull Request - State: closed - Opened by seankao-az over 1 year ago
Labels: backport 2.x

#2728 - Fix triage query

Pull Request - State: closed - Opened by scrawfor99 over 1 year ago - 1 comment

#2724 - [Performance Bug] Repeated deserialization of headers for a direct channel request

Issue - State: open - Opened by parasjain1 over 1 year ago - 7 comments
Labels: bug, triaged

#2717 - Upgrade spring-core from 5.3.26 to 5.3.27.

Pull Request - State: closed - Opened by Rishikesh1159 over 1 year ago - 5 comments
Labels: backport 1.x, backport 1.3, backport 2.x

#2716 - [Extensions] Generate auth tokens for service accounts

Pull Request - State: closed - Opened by scrawfor99 over 1 year ago - 2 comments
Labels: backport 2.x

#2714 - [Bug] Core changes to ImmutableOpenMap causing various failures

Issue - State: closed - Opened by scrawfor99 over 1 year ago - 3 comments
Labels: triaged

#2713 - [Extensions] Add a internal user provider interface

Pull Request - State: closed - Opened by scrawfor99 over 1 year ago - 1 comment

#2710 - CVE-2023-1370 (High) detected in json-smart-2.4.7.jar

Issue - State: closed - Opened by Bogendra over 1 year ago - 4 comments
Labels: untriaged

#2708 - [FEATURE] usage of JWKS with JWT (w/o OpenID connect)

Pull Request - State: open - Opened by sebastianmichalski over 1 year ago - 10 comments

#2704 - [Extensions] Filter internal users for Service Accounts and add associated API

Issue - State: open - Opened by scrawfor99 over 1 year ago - 1 comment
Labels: enhancement, triaged

#2703 - [Extensions] Authenticate and authorize from service account token

Issue - State: closed - Opened by scrawfor99 over 1 year ago - 2 comments
Labels: enhancement, triaged

#2702 - [Maintenance] FGAC API should ignore extra whitespaces in configuration such as backend roles

Issue - State: closed - Opened by scrawfor99 over 1 year ago - 3 comments
Labels: triaged

#2701 - [Bug] Fix issues with read-only role

Issue - State: open - Opened by scrawfor99 over 1 year ago - 6 comments
Labels: bug, triaged

#2672 - [Security/Extension] Extension Authentication Backend

Pull Request - State: closed - Opened by RyanL1997 over 1 year ago - 5 comments

#2671 - Extensions config for JWT signing/encryption key

Pull Request - State: closed - Opened by MaciejMierzwa over 1 year ago - 15 comments

#2668 - [Extensions] Generate a password for an extension's service account on installation

Issue - State: closed - Opened by scrawfor99 over 1 year ago - 1 comment
Labels: triaged

#2666 - [Diagram] Service account creation during extension installation

Issue - State: closed - Opened by scrawfor99 over 1 year ago
Labels: triaged

#2660 - Add diagram of how transport actions are checked

Pull Request - State: closed - Opened by peternied over 1 year ago - 3 comments

#2654 - [META] Diagrams for New Security Model

Issue - State: closed - Opened by DarshitChanpura over 1 year ago - 4 comments
Labels: triaged

#2651 - [Question] When should user account roles be looked up?

Issue - State: closed - Opened by DarshitChanpura over 1 year ago - 3 comments
Labels: triaged

#2646 - [Extensions] Core-side API to get auth token for service account

Issue - State: open - Opened by scrawfor99 over 1 year ago - 1 comment
Labels: enhancement, triaged

#2641 - [Backport 1.x] Fix lost privileges during auto initializing of the index

Pull Request - State: closed - Opened by willyborankin over 1 year ago
Labels: backport 1.3

#2638 - [META] Secure communication between OpenSearch and Extensions

Issue - State: open - Opened by peternied over 1 year ago - 6 comments
Labels: triaged

#2636 - Revert "Rest admin permissions (#2411) (#2466)"

Pull Request - State: closed - Opened by willyborankin over 1 year ago - 1 comment

#2635 - Release version 2.7.0

Issue - State: open - Opened by gaiksaya over 1 year ago - 1 comment
Labels: triaged, v2.7.0

#2627 - [Extensions] Modify Job Schedule's ScheduleParser to read in the refresh token field

Issue - State: closed - Opened by cwperks over 1 year ago - 2 comments
Labels: triaged

#2624 - [Extensions] Create a single secure index to store identity information for scheduled jobs

Issue - State: open - Opened by cwperks over 1 year ago - 1 comment
Labels: triaged

#2623 - [Extensions] Create a way to identify if an Extension REST Handler will create a scheduled job

Issue - State: closed - Opened by cwperks over 1 year ago - 4 comments
Labels: triaged

#2619 - [Extension] Authentication Backend for JIT Token Validation

Issue - State: closed - Opened by RyanL1997 over 1 year ago - 5 comments
Labels: triaged

#2615 - [Extensions] Create dynamic configuration section in config.yml for extensions

Issue - State: closed - Opened by cwperks over 1 year ago - 8 comments
Labels: triaged

#2605 - Separate config option to enable restapi: permissions

Pull Request - State: closed - Opened by willyborankin over 1 year ago - 1 comment

#2604 - Separate config option to enable restapi: permissions

Pull Request - State: closed - Opened by willyborankin over 1 year ago

#2603 - [Extensions] Issue access token on behalf of user stored in scheduled job identity index

Issue - State: open - Opened by cwperks over 1 year ago - 1 comment
Labels: triaged

#2601 - Authorize Requests bound for extensions in the REST-Layer

Pull Request - State: closed - Opened by cwperks over 1 year ago - 7 comments