Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

kibana-keystore ignores path.data config #111915

Closed
mshavliuk opened this issue Sep 11, 2021 · 2 comments · Fixed by #111994
Closed

kibana-keystore ignores path.data config #111915

mshavliuk opened this issue Sep 11, 2021 · 2 comments · Fixed by #111994
Assignees
@jbudz
Labels
bug Fixes for quality problems that affect the customer experience Team:Operations Team label for Operations Team

Comments

@mshavliuk
Copy link

mshavliuk commented Sep 11, 2021
edited
Loading

Kibana version: 7.14.1

Original install method (e.g. download page, yum, from source, etc.): docker run arm64v8/kibana:7.14.1

Describe the bug:
The documentation says:

The file kibana.keystore will be created in the directory defined by the path.data configuration setting.

Meanwhile, the path.data has a default value 'data', see docs

So I would expect the keystore file to be created in /usr/share/kibana/data by default (1), or in any other directory specified in /usr/share/kibana/config/kibana.yml by path.data config line (2).

None of the (1) nor (2) assumptions are actually correct.

Steps to reproduce:

  1. Execute the create command with default configs.
    Run the command

    docker run --rm arm64v8/kibana:7.14.1 bin/kibana-keystore create

  2. Execute the create command with modified path.data config.
    Run the command

    docker run --rm arm64v8/kibana:7.14.1 bash -c \
  "printf \"\npath.data: '/var/data'\n\" >> /usr/share/kibana/config/kibana.yml; \
  bin/kibana-keystore create"

Output:

Created Kibana keystore in /usr/share/kibana/config/kibana.keystore

Created Kibana keystore in /usr/share/kibana/config/kibana.keystore

Expected behavior:
Output:

Created Kibana keystore in /usr/share/kibana/data/kibana.keystore

Created Kibana keystore in /var/data/kibana.keystore
@mshavliuk mshavliuk added the bug Fixes for quality problems that affect the customer experience label Sep 11, 2021
@botelastic botelastic bot added the needs-team Issues missing a team label label Sep 11, 2021
@liza-mae liza-mae added the Team:Operations Team label for Operations Team label Sep 12, 2021
@elasticmachine
Copy link
Contributor

Pinging @elastic/kibana-operations (Team:Operations)

@botelastic botelastic bot removed the needs-team Issues missing a team label label Sep 12, 2021
@jbudz jbudz self-assigned this Sep 13, 2021
@jbudz
Copy link
Member

jbudz commented Sep 13, 2021

Thanks for filing @mshavliuk - I'll get the docs updated. In the meantime - we moved the keystore to the config folder to be consistent with other applications in the stack. This is controlled by the environment variable KBN_PATH_CONF

jbudz added a commit to jbudz/kibana that referenced this issue Sep 13, 2021
@jbudz
[docs] Update keystore location
4c4cc87 
With elastic#57856 the default keystore
location was moved from the data folder to the config folder to align
with other applications in the stack.  This updates the secure settings
docs to reference the correct location.

Closes elastic#111915
@jbudz jbudz mentioned this issue Sep 13, 2021
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jbudz jbudz

Labels
bug Fixes for quality problems that affect the customer experience Team:Operations Team label for Operations Team
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

[docs] Update keystore location jbudz/kibana
4 participants
@jbudz @mshavliuk @elasticmachine @liza-mae