Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Set security index refresh interval to 1s #45434

Merged
merged 3 commits into from
Aug 19, 2019
Merged

Set security index refresh interval to 1s #45434

merged 3 commits into from
Aug 19, 2019

Conversation

tvernum
Copy link
Contributor

@tvernum tvernum commented Aug 12, 2019
edited
Loading

The security indices were being created without specifying the
refresh interval, which means it would inherit a value from any
templates that exists.
However, certain security functionality depends on being able to
wait_for refresh, and causes errors (e.g. in Kibana) if that time
exceeds 30s.

This commit changes the security indices configuration to always be
created with a 1s refresh interval. This prevents any templates from
inadvertantly interfering with the proper functioning of security.
It is possible for an administrator to explicitly change the refresh
interval after the indices have been created.

Resolves: #44934

@tvernum
Set security index refresh interval to 1s
b25ab4b 
The security indices were being created without specifying the
refresh interval, which means it would inherit a value from any
templates that exists.
However, certain security functionality depends on being able to
wait_for refresh, and causes errors (e.g. in Kibana) if that time
exceeds 30s.

This commit changes the security indices configuration to always be
created with a 1s refresh interval. This prevents any templates from
inadvertantly interfering with the proper functioning of security.
It is possible for an administrator to explicitly change the refresh
interval after the indices have been created.
@tvernum tvernum added >enhancement :Security/Security Security issues without another label v8.0.0 v7.4.0 labels Aug 12, 2019
@elasticmachine
Copy link
Collaborator

Pinging @elastic/es-security

@tvernum
Copy link
Contributor Author

tvernum commented Aug 13, 2019

@elasticmachine update branch

@tvernum
Copy link
Contributor Author

tvernum commented Aug 13, 2019

@elasticmachine run elasticsearch-ci/1

albertzaharovits
albertzaharovits approved these changes Aug 13, 2019
View reviewed changes
Copy link
Contributor

@albertzaharovits albertzaharovits left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

bizybot
bizybot approved these changes Aug 14, 2019
View reviewed changes
Copy link
Contributor

@bizybot bizybot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, Thank you.

@tvernum
Copy link
Contributor Author

tvernum commented Aug 19, 2019

@elasticmachine update branch

@tvernum tvernum merged commit 0b163ab into elastic:master Aug 19, 2019
tvernum added a commit to tvernum/elasticsearch that referenced this pull request Aug 23, 2019
@tvernum
Set security index refresh interval to 1s
a4a9a03 
The security indices were being created without specifying the
refresh interval, which means it would inherit a value from any
templates that exists.
However, certain security functionality depends on being able to
wait_for refresh, and causes errors (e.g. in Kibana) if that time
exceeds 30s.

This commit changes the security indices configuration to always be
created with a 1s refresh interval. This prevents any templates from
inadvertantly interfering with the proper functioning of security.
It is possible for an administrator to explicitly change the refresh
interval after the indices have been created.

Backport of: elastic#45434
@tvernum tvernum mentioned this pull request Aug 23, 2019
Merged
tvernum added a commit that referenced this pull request Aug 23, 2019
@tvernum
Set security index refresh interval to 1s (#45888)
f94e4a9 
The security indices were being created without specifying the
refresh interval, which means it would inherit a value from any
templates that exists.
However, certain security functionality depends on being able to
wait_for refresh, and causes errors (e.g. in Kibana) if that time
exceeds 30s.

This commit changes the security indices configuration to always be
created with a 1s refresh interval. This prevents any templates from
inadvertantly interfering with the proper functioning of security.
It is possible for an administrator to explicitly change the refresh
interval after the indices have been created.

Backport of: #45434
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bizybot bizybot bizybot approved these changes

@albertzaharovits albertzaharovits albertzaharovits approved these changes

Assignees
No one assigned
Labels
>enhancement :Security/Security Security issues without another label v7.4.0 v8.0.0-alpha1
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Handle incorrect refresh interval on security indices
5 participants
@tvernum @elasticmachine @bizybot @albertzaharovits @jakelandis