Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / opensearch-project/security issues and pull requests
#2791 - [BUG] javax.net.ssl.SSLHandshakeException: Received fatal alert: certificate_unknown
Issue -
State: open - Opened by zalseryani over 1 year ago
- 2 comments
Labels: bug, untriaged
#2790 - add ml model group system index
Pull Request -
State: closed - Opened by ylwu-amzn over 1 year ago
- 1 comment
#2789 - Changes in role.yml for long-running operation notification feature in Index-Management repo
Pull Request -
State: closed - Opened by zhichao-aws over 1 year ago
- 1 comment
#2788 - [AUTOCUT] Integration Test failed for security: 2.8.0 tar distribution
Issue -
State: open - Opened by opensearch-ci-bot over 1 year ago
- 1 comment
Labels: untriaged, autocut, v2.8.0, integ-test-failure
#2787 - Implements token handlers and tests
Pull Request -
State: open - Opened by scrawfor99 over 1 year ago
#2786 - 2704 filter internal and service accounts
Pull Request -
State: open - Opened by samuelcostae over 1 year ago
#2785 - Release version 2.8.0
Issue -
State: open - Opened by peterzhuamazon over 1 year ago
- 1 comment
Labels: release, triaged, v2.8.0
#2784 - [Backport 2.x] Add score based password verification
Pull Request -
State: closed - Opened by willyborankin over 1 year ago
- 1 comment
#2783 - Fixes LoggerMessageFormat import to use correct package in core
Pull Request -
State: closed - Opened by DarshitChanpura over 1 year ago
#2782 - [Refactor] Build failure due to breaking changes introduced in core
Issue -
State: open - Opened by RyanL1997 over 1 year ago
- 2 comments
Labels: bug, triaged
#2781 - Fix the `import org.opensearch.core.common.Strings;` and `import org.opensearch.core.common.logging.LoggerMessageFormat;`
Pull Request -
State: closed - Opened by RyanL1997 over 1 year ago
- 8 comments
#2780 - [Performance] Use a faster serialization protocol within security plugin
Issue -
State: open - Opened by parasjain1 over 1 year ago
- 8 comments
Labels: enhancement, help wanted, triaged
#2779 - Use proto serialization
Pull Request -
State: open - Opened by parasjain1 over 1 year ago
#2778 - Add release notes for 1.3.10
Pull Request -
State: closed - Opened by RyanL1997 over 1 year ago
#2777 - [Backport 2.7] [Manual Backport 2.x] Manually backports auth tokens, service accounts, and multi tenancy changes
Pull Request -
State: closed - Opened by opensearch-trigger-bot[bot] over 1 year ago
- 1 comment
#2776 - [Extensions] Delete user details to scheduled job identity index on postDelete of a plugin/extension deleting a scheduled job
Issue -
State: open - Opened by cwperks over 1 year ago
- 1 comment
Labels: enhancement, triaged
#2775 - Service account manager impl
Pull Request -
State: open - Opened by MaciejMierzwa over 1 year ago
#2774 - [Feature/Extension] Rename the term 'extension' into 'on_behalf_of'
Pull Request -
State: closed - Opened by RyanL1997 over 1 year ago
- 2 comments
#2773 - Store Scheduled Job User Information in an index owned by the Security plugin
Pull Request -
State: open - Opened by cwperks over 1 year ago
- 2 comments
#2772 - [Extensions] Restrict which transport actions an extension can perform
Issue -
State: open - Opened by cwperks over 1 year ago
Labels: enhancement, triaged
#2771 - [Backport 2.x] `deserializeSafeFromHeader` uses `context.getHeader(headerName)` instead of `context.getHeaders()`
Pull Request -
State: closed - Opened by opensearch-trigger-bot[bot] over 1 year ago
- 2 comments
#2770 - [Backport 2.x] Add default roles for SQL plugin: PPL and cross-cluster search
Pull Request -
State: closed - Opened by opensearch-trigger-bot[bot] over 1 year ago
- 1 comment
#2769 - [BUG] "invalid action name [cluster:feature/tenancy/config/read] must start with one of: [cluster:admin, indices:data/read, indices:monitor, indices:data/write, internal:, indices:internal, cluster:monitor, cluster:internal, indices:admin]"
Issue -
State: closed - Opened by mbasha86 over 1 year ago
- 5 comments
Labels: bug, untriaged
#2768 - `deserializeSafeFromHeader` uses `context.getHeader(headerName)` instead of `context.getHeaders()`
Pull Request -
State: closed - Opened by parasjain1 over 1 year ago
- 5 comments
Labels: backport 2.x
#2767 - `deserializeSafeFromHeader` uses `context.getHeader(headerName)` instead of `context.getHeaders()`
Pull Request -
State: closed - Opened by parasjain1 over 1 year ago
#2766 - [Feature] Add support for required_audience and required_issuer for OIDC auth backend
Issue -
State: open - Opened by ramizraza504 over 1 year ago
- 5 comments
Labels: bug, triaged
#2765 - Adds a check to skip serialization-deserialization if request is for same node
Pull Request -
State: open - Opened by DarshitChanpura over 1 year ago
- 6 comments
#2764 - Determine how auth token is generated from security plugin and accessible by core to forward
Issue -
State: open - Opened by davidlago over 1 year ago
- 3 comments
Labels: triaged
#2763 - [Backport 2.x] Upgrade spring-core from 5.3.26 to 5.3.27
Pull Request -
State: closed - Opened by cwperks over 1 year ago
- 2 comments
#2762 - Adding tenets to CONTRIBUTING.md
Pull Request -
State: closed - Opened by davidlago over 1 year ago
- 1 comment
#2760 - [Feature/Extension] About the term check for 'extension'
Issue -
State: closed - Opened by RyanL1997 over 1 year ago
Labels: bug, triaged
#2759 - [AUTOCUT] Integration Test failed for security: 2.7.0 tar distribution
Issue -
State: closed - Opened by opensearch-ci-bot over 1 year ago
- 1 comment
Labels: untriaged, autocut, v2.7.0, integ-test-failure
#2758 - Fix multitency config update
Pull Request -
State: closed - Opened by willyborankin over 1 year ago
- 6 comments
Labels: backport 2.x, backport 2.7
#2757 - [Performance Bug] `HeaderHelper.getSafeFromHeader` uses ThreadContext.getHeaders() causing major performance overhead
Issue -
State: closed - Opened by parasjain1 over 1 year ago
- 1 comment
Labels: bug, untriaged
#2756 - java.lang.IllegalStateException: Username cannot have '|' in the security plugin.
Issue -
State: open - Opened by ran2806 over 1 year ago
- 4 comments
Labels: triaged
#2755 - [Backport 2.x] Use ExtensionsManager.lookupExtensionSettingsById when verifying exte…
Pull Request -
State: closed - Opened by peternied over 1 year ago
- 2 comments
#2754 - [AUTOCUT] OS Distribution Build Failed for security-2.8.0
Issue -
State: closed - Opened by opensearch-ci-bot over 1 year ago
- 3 comments
Labels: autocut, v2.8.0
#2753 - [Feature/Extensions] Authorize rest requests bound to Extensions
Pull Request -
State: open - Opened by DarshitChanpura over 1 year ago
- 2 comments
#2752 - [Feature/Extensions] Supporting `cluster_permissions` nomenclature
Issue -
State: open - Opened by DarshitChanpura over 1 year ago
Labels: triaged
#2751 - [Feature/Extensions] Implement PrivilegeEvaluator on REST Layer.
Issue -
State: open - Opened by DarshitChanpura over 1 year ago
- 4 comments
Labels: triaged
#2750 - Extension registration
Pull Request -
State: closed - Opened by samuelcostae over 1 year ago
- 3 comments
#2749 - Use ExtensionsManager.lookupExtensionSettingsById when verifying extension unique id
Pull Request -
State: closed - Opened by cwperks over 1 year ago
- 6 comments
Labels: backport 2.x
#2748 - Limit the use of extensions term in the codebase
Pull Request -
State: closed - Opened by peternied over 1 year ago
- 1 comment
#2747 - [BUG] Extensions handshake is failing with TLS after change to utilize `lookupInitializedExtensionById`
Issue -
State: closed - Opened by cwperks over 1 year ago
- 3 comments
Labels: bug, triaged
#2746 - [Extensions] Create extension point to be able to register security settings into `extensions.yml`
Issue -
State: open - Opened by cwperks over 1 year ago
- 7 comments
Labels: bug, triaged
#2745 - Sync 1.x with 1.3 branch
Pull Request -
State: closed - Opened by peternied over 1 year ago
- 1 comment
#2744 - [Backport 2.x] Upgrade spring-core from 5.3.26 to 5.3.27.
Pull Request -
State: closed - Opened by opensearch-trigger-bot[bot] over 1 year ago
- 2 comments
#2743 - [Backport 2.x] Use updated method to lookup extension by unique id
Pull Request -
State: closed - Opened by opensearch-trigger-bot[bot] over 1 year ago
#2742 - [Flaky Test] Configuration is not available after an update for more than 10 seconds
Issue -
State: open - Opened by peternied over 1 year ago
- 5 comments
Labels: bug, triaged, flaky-test
#2741 - Use updated method to lookup extension by unique id
Pull Request -
State: closed - Opened by cwperks over 1 year ago
- 3 comments
Labels: backport 2.x
#2739 - [Backport] [2.x] Update to Gradle 8.1.1 (#2738)
Pull Request -
State: closed - Opened by reta over 1 year ago
#2738 - Update to Gradle 8.1.1
Pull Request -
State: closed - Opened by reta over 1 year ago
- 2 comments
Labels: dependencies, backport 2.x
#2737 - [Manual Backport 2.x] Manually backports auth tokens, service accounts, and multi tenancy changes
Pull Request -
State: closed - Opened by scrawfor99 over 1 year ago
- 8 comments
Labels: backport 2.7
#2736 - [BUG] DLS filtering is applied to the wrong action
Issue -
State: open - Opened by MarrakchiAyoub over 1 year ago
- 1 comment
Labels: bug, triaged
#2735 - [Backport 2.x] update security-analytics roles to add correlation engine apis
Pull Request -
State: closed - Opened by opensearch-trigger-bot[bot] over 1 year ago
- 1 comment
#2734 - [Backport 2.x] Identify extension Transport requests and permit handshake and extension registration actions
Pull Request -
State: closed - Opened by cwperks over 1 year ago
#2733 - Role permissions order tool and workflow
Pull Request -
State: open - Opened by peternied over 1 year ago
#2732 - update security-analytics roles to add correlation engine apis
Pull Request -
State: closed - Opened by sbcd90 over 1 year ago
- 2 comments
Labels: backport 2.x
#2731 - [AUTO] Increment version to 2.7.1-SNAPSHOT
Pull Request -
State: open - Opened by opensearch-trigger-bot[bot] over 1 year ago
- 1 comment
#2730 - [Extensions] Add support for `extension_dns` list in `extensions.yml` file
Issue -
State: open - Opened by cwperks over 1 year ago
- 4 comments
Labels: enhancement, triaged
#2729 - Add default roles for SQL plugin: PPL and cross-cluster search
Pull Request -
State: closed - Opened by seankao-az over 1 year ago
Labels: backport 2.x
#2728 - Fix triage query
Pull Request -
State: closed - Opened by scrawfor99 over 1 year ago
- 1 comment
#2724 - [Performance Bug] Repeated deserialization of headers for a direct channel request
Issue -
State: open - Opened by parasjain1 over 1 year ago
- 7 comments
Labels: bug, triaged
#2717 - Upgrade spring-core from 5.3.26 to 5.3.27.
Pull Request -
State: closed - Opened by Rishikesh1159 over 1 year ago
- 5 comments
Labels: backport 1.x, backport 1.3, backport 2.x
#2716 - [Extensions] Generate auth tokens for service accounts
Pull Request -
State: closed - Opened by scrawfor99 over 1 year ago
- 2 comments
Labels: backport 2.x
#2714 - [Bug] Core changes to ImmutableOpenMap causing various failures
Issue -
State: closed - Opened by scrawfor99 over 1 year ago
- 3 comments
Labels: triaged
#2713 - [Extensions] Add a internal user provider interface
Pull Request -
State: closed - Opened by scrawfor99 over 1 year ago
- 1 comment
#2710 - CVE-2023-1370 (High) detected in json-smart-2.4.7.jar
Issue -
State: closed - Opened by Bogendra over 1 year ago
- 4 comments
Labels: untriaged
#2708 - [FEATURE] usage of JWKS with JWT (w/o OpenID connect)
Pull Request -
State: open - Opened by sebastianmichalski over 1 year ago
- 10 comments
#2704 - [Extensions] Filter internal users for Service Accounts and add associated API
Issue -
State: open - Opened by scrawfor99 over 1 year ago
- 1 comment
Labels: enhancement, triaged
#2703 - [Extensions] Authenticate and authorize from service account token
Issue -
State: closed - Opened by scrawfor99 over 1 year ago
- 2 comments
Labels: enhancement, triaged
#2702 - [Maintenance] FGAC API should ignore extra whitespaces in configuration such as backend roles
Issue -
State: closed - Opened by scrawfor99 over 1 year ago
- 3 comments
Labels: triaged
#2701 - [Bug] Fix issues with read-only role
Issue -
State: open - Opened by scrawfor99 over 1 year ago
- 6 comments
Labels: bug, triaged
#2700 - [Extensions] Audit Logging: Log when permissions have been granted/revoked and on privilege evaluation
Issue -
State: open - Opened by cwperks over 1 year ago
- 1 comment
Labels: triaged
#2681 - Authorize system index permissions in SecurityIndexAccessEvaluator
Pull Request -
State: open - Opened by samuelcostae over 1 year ago
#2672 - [Security/Extension] Extension Authentication Backend
Pull Request -
State: closed - Opened by RyanL1997 over 1 year ago
- 5 comments
#2671 - Extensions config for JWT signing/encryption key
Pull Request -
State: closed - Opened by MaciejMierzwa over 1 year ago
- 15 comments
#2668 - [Extensions] Generate a password for an extension's service account on installation
Issue -
State: closed - Opened by scrawfor99 over 1 year ago
- 1 comment
Labels: triaged
#2667 - [Extensions] Parse configuration file of extensions during installation, pass this information to the Security Plugin
Issue -
State: closed - Opened by scrawfor99 over 1 year ago
- 3 comments
Labels: triaged
#2666 - [Diagram] Service account creation during extension installation
Issue -
State: closed - Opened by scrawfor99 over 1 year ago
Labels: triaged
#2660 - Add diagram of how transport actions are checked
Pull Request -
State: closed - Opened by peternied over 1 year ago
- 3 comments
#2654 - [META] Diagrams for New Security Model
Issue -
State: closed - Opened by DarshitChanpura over 1 year ago
- 4 comments
Labels: triaged
#2651 - [Question] When should user account roles be looked up?
Issue -
State: closed - Opened by DarshitChanpura over 1 year ago
- 3 comments
Labels: triaged
#2646 - [Extensions] Core-side API to get auth token for service account
Issue -
State: open - Opened by scrawfor99 over 1 year ago
- 1 comment
Labels: enhancement, triaged
#2641 - [Backport 1.x] Fix lost privileges during auto initializing of the index
Pull Request -
State: closed - Opened by willyborankin over 1 year ago
Labels: backport 1.3
#2640 - [Backport 2.x] Fix lost privileges during auto initializing of the index (#2498)
Pull Request -
State: closed - Opened by willyborankin over 1 year ago
#2638 - [META] Secure communication between OpenSearch and Extensions
Issue -
State: open - Opened by peternied over 1 year ago
- 6 comments
Labels: triaged
#2636 - Revert "Rest admin permissions (#2411) (#2466)"
Pull Request -
State: closed - Opened by willyborankin over 1 year ago
- 1 comment
#2635 - Release version 2.7.0
Issue -
State: open - Opened by gaiksaya over 1 year ago
- 1 comment
Labels: triaged, v2.7.0
#2627 - [Extensions] Modify Job Schedule's ScheduleParser to read in the refresh token field
Issue -
State: closed - Opened by cwperks over 1 year ago
- 2 comments
Labels: triaged
#2626 - [Extensions] Create an interface that Job Scheduler can use to manage user info associated with a scheduled job
Issue -
State: open - Opened by cwperks over 1 year ago
- 1 comment
Labels: triaged
#2625 - [Extensions] Save user details to scheduled job identity index on postIndex of a plugin/extension scheduling a new job
Issue -
State: open - Opened by cwperks over 1 year ago
- 1 comment
Labels: triaged
#2624 - [Extensions] Create a single secure index to store identity information for scheduled jobs
Issue -
State: open - Opened by cwperks over 1 year ago
- 1 comment
Labels: triaged
#2623 - [Extensions] Create a way to identify if an Extension REST Handler will create a scheduled job
Issue -
State: closed - Opened by cwperks over 1 year ago
- 4 comments
Labels: triaged
#2619 - [Extension] Authentication Backend for JIT Token Validation
Issue -
State: closed - Opened by RyanL1997 over 1 year ago
- 5 comments
Labels: triaged
#2615 - [Extensions] Create dynamic configuration section in config.yml for extensions
Issue -
State: closed - Opened by cwperks over 1 year ago
- 8 comments
Labels: triaged
#2605 - Separate config option to enable restapi: permissions
Pull Request -
State: closed - Opened by willyborankin over 1 year ago
- 1 comment
#2604 - Separate config option to enable restapi: permissions
Pull Request -
State: closed - Opened by willyborankin over 1 year ago
#2603 - [Extensions] Issue access token on behalf of user stored in scheduled job identity index
Issue -
State: open - Opened by cwperks over 1 year ago
- 1 comment
Labels: triaged
#2601 - Authorize Requests bound for extensions in the REST-Layer
Pull Request -
State: closed - Opened by cwperks over 1 year ago
- 7 comments