Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Return API key name in _authentication response #78946

Merged
merged 38 commits into from Oct 29, 2021
Merged

Return API key name in _authentication response #78946

merged 38 commits into from Oct 29, 2021

Commits on Oct 11, 2021

  1. Return API KEY name in _authentication response 

    Responses to POST /_security/api_key includes id, name, metadata,
api_key (shared secret), and encoded (base64 of id:api_key).

Requests to GET /_security/_authenticate returns data about the user,
but not the API KEY.

When authenticating using an API KEY, return API KEY info map in the
response. The initial feature request asked for 'name'. However, the
request's Authentication header contains 'encoded', so the decoded
'id' will be returned for convenience too.

When authenticating using any other method, API KEY info map is
omitted.

Closes elastic#70306
    @justincr-elastic
    justincr-elastic committed Oct 11, 2021
    Copy the full SHA
    2442918 View commit details
    Browse the repository at this point in the history

  2. Return API KEY name in _authentication response 

    Responses to POST /_security/api_key includes id, name, metadata,
api_key (shared secret), and encoded (base64 of id:api_key).

Requests to GET /_security/_authenticate returns data about the user,
but not the API KEY.

When authenticating using an API KEY, return API KEY info map in the
response. The initial feature request asked for 'name'. However, the
request's Authentication header contains 'encoded', so the decoded
'id' will be returned for convenience too.

When authenticating using any other method, API KEY info map is
omitted.

Closes elastic#70306
    @justincr-elastic
    justincr-elastic committed Oct 11, 2021
    Copy the full SHA
    bc1bac4 View commit details
    Browse the repository at this point in the history

Commits on Oct 12, 2021

  1. Merge remote-tracking branch 'origin/master' into feature/70306

    @justincr-elastic
    justincr-elastic committed Oct 12, 2021
    Copy the full SHA
    037c338 View commit details
    Browse the repository at this point in the history

Commits on Oct 14, 2021

  1. Resolve PR feedback.

    @justincr-elastic
    justincr-elastic committed Oct 14, 2021
    Copy the full SHA
    945cb34 View commit details
    Browse the repository at this point in the history

  2. Merge remote-tracking branch 'origin/master' into feature/70306

    @justincr-elastic
    justincr-elastic committed Oct 14, 2021
    Copy the full SHA
    53c428d View commit details
    Browse the repository at this point in the history

Commits on Oct 15, 2021

  1. Add api_key id+name in Authentication metadata.

    @justincr-elastic
    justincr-elastic committed Oct 15, 2021
    Copy the full SHA
    6339ad6 View commit details
    Browse the repository at this point in the history

  2. Merge remote-tracking branch 'origin/master' into feature/70306 

    # Conflicts:
#	x-pack/plugin/security/src/test/java/org/elasticsearch/xpack/security/authz/store/CompositeRolesStoreTests.java
    @justincr-elastic
    justincr-elastic committed Oct 15, 2021
    Copy the full SHA
    b81ae17 View commit details
    Browse the repository at this point in the history

  3. Fix another test lacking mandatory api_key id. 

    Fix merge issue.
    @justincr-elastic
    justincr-elastic committed Oct 15, 2021
    Copy the full SHA
    fa4542c View commit details
    Browse the repository at this point in the history

  4. Make API KEY info map validation code reusable.

    @justincr-elastic
    justincr-elastic committed Oct 15, 2021
    Copy the full SHA
    6dfe2a7 View commit details
    Browse the repository at this point in the history

  5. Remove unused method.

    @justincr-elastic
    justincr-elastic committed Oct 15, 2021
    Copy the full SHA
    940a9cb View commit details
    Browse the repository at this point in the history

  6. Merge branch 'master' into feature/70306

    @elasticmachine
    elasticmachine committed Oct 15, 2021
    Copy the full SHA
    914f6bd View commit details
    Browse the repository at this point in the history

  7. Fix client tests.

    @justincr-elastic
    justincr-elastic committed Oct 15, 2021
    Copy the full SHA
    70dbd86 View commit details
    Browse the repository at this point in the history

  8. Remove whitespace edits.

    @justincr-elastic
    justincr-elastic committed Oct 15, 2021
    Copy the full SHA
    95a7777 View commit details
    Browse the repository at this point in the history

  9. Merge remote-tracking branch 'origin/master' into feature/70306

    @justincr-elastic
    justincr-elastic committed Oct 15, 2021
    Copy the full SHA
    ae6972e View commit details
    Browse the repository at this point in the history

  10. Remove unused import. 

    Fix long lines.
    @justincr-elastic
    justincr-elastic committed Oct 15, 2021
    Copy the full SHA
    707c774 View commit details
    Browse the repository at this point in the history

Commits on Oct 18, 2021

  1. Merge branch 'master' into feature/70306

    @elasticmachine
    elasticmachine committed Oct 18, 2021
    Copy the full SHA
    162cf7b View commit details
    Browse the repository at this point in the history

Commits on Oct 20, 2021

  1. Merge remote-tracking branch 'origin/master' into feature/70306

    @justincr-elastic
    justincr-elastic committed Oct 20, 2021
    Copy the full SHA
    2c6b5ef View commit details
    Browse the repository at this point in the history

  2. Move ApiKeyServiceFields to AuthenticationFields

    @justincr-elastic
    justincr-elastic committed Oct 20, 2021
    Copy the full SHA
    328c544 View commit details
    Browse the repository at this point in the history

  3. Fix refactoring. It mixed single+wildcard imports.

    @justincr-elastic
    justincr-elastic committed Oct 20, 2021
    Copy the full SHA
    82d3f8f View commit details
    Browse the repository at this point in the history

  4. Merge branch 'master' into feature/70306

    @elasticmachine
    elasticmachine committed Oct 20, 2021
    Copy the full SHA
    0607b15 View commit details
    Browse the repository at this point in the history

  5. Resolve PR comments.

    @justincr-elastic
    justincr-elastic committed Oct 20, 2021
    Copy the full SHA
    3f98ccd View commit details
    Browse the repository at this point in the history

Commits on Oct 21, 2021

  1. Re-add public constructors.

    @justincr-elastic
    justincr-elastic committed Oct 21, 2021
    Copy the full SHA
    2f0bee8 View commit details
    Browse the repository at this point in the history

  2. Guard assertions with authentication type check. 

    Add a brief message to show when the assertions trip.

Change second assertion from ID to NAME.
    @justincr-elastic
    justincr-elastic committed Oct 21, 2021
    Copy the full SHA
    036a753 View commit details
    Browse the repository at this point in the history

  3. Re-add asserts to simplify production null checks.

    @justincr-elastic
    justincr-elastic committed Oct 21, 2021
    Copy the full SHA
    2c7d898 View commit details
    Browse the repository at this point in the history

  4. Fix assertions.

    @justincr-elastic
    justincr-elastic committed Oct 21, 2021
    Copy the full SHA
    015822e View commit details
    Browse the repository at this point in the history

  5. API KEY name must be present, null or non-null.

    @justincr-elastic
    justincr-elastic committed Oct 21, 2021
    Copy the full SHA
    a4fd654 View commit details
    Browse the repository at this point in the history

  6. Fix test to include API KEY name, random or null.

    @justincr-elastic
    justincr-elastic committed Oct 21, 2021
    Copy the full SHA
    0e0f30c View commit details
    Browse the repository at this point in the history

  7. Merge branch 'master' into feature/70306

    @elasticmachine
    elasticmachine committed Oct 21, 2021
    Copy the full SHA
    6cab25f View commit details
    Browse the repository at this point in the history

Commits on Oct 22, 2021

  1. Fix tests.

    @justincr-elastic
    justincr-elastic committed Oct 22, 2021
    Copy the full SHA
    ac36557 View commit details
    Browse the repository at this point in the history

Commits on Oct 25, 2021

  1. Fix test.

    @justincr-elastic
    justincr-elastic committed Oct 25, 2021
    Copy the full SHA
    15e140a View commit details
    Browse the repository at this point in the history

Commits on Oct 28, 2021

  1. Merge commit '4e09186' into feature/70306

    @justincr-elastic
    justincr-elastic committed Oct 28, 2021
    Copy the full SHA
    d99eeab View commit details
    Browse the repository at this point in the history

  2. Merge commit '12ad399' into feature/70306

    @justincr-elastic
    justincr-elastic committed Oct 28, 2021
    Copy the full SHA
    7ff316e View commit details
    Browse the repository at this point in the history

  3. Merge branch 'master' into feature/70306

    @justincr-elastic
    justincr-elastic committed Oct 28, 2021
    Copy the full SHA
    1ad6e08 View commit details
    Browse the repository at this point in the history

  4. Fix issues with auto-merge.

    @justincr-elastic
    justincr-elastic committed Oct 28, 2021
    Copy the full SHA
    96884c1 View commit details
    Browse the repository at this point in the history

  5. Apply new whitesource formatting rules.

    @justincr-elastic
    justincr-elastic committed Oct 28, 2021
    Copy the full SHA
    cf344e8 View commit details
    Browse the repository at this point in the history

  6. Put null instead of remove for API KEY name

    @justincr-elastic
    justincr-elastic committed Oct 28, 2021
    Copy the full SHA
    2c15645 View commit details
    Browse the repository at this point in the history

  7. Deserialize authentication.api_key.name=null

    @justincr-elastic
    justincr-elastic committed Oct 28, 2021
    Copy the full SHA
    3e4b468 View commit details
    Browse the repository at this point in the history

Commits on Oct 29, 2021

  1. Merge branch 'master' into feature/70306

    @elasticmachine
    elasticmachine committed Oct 29, 2021
    Copy the full SHA
    582f733 View commit details
    Browse the repository at this point in the history