-
Notifications
You must be signed in to change notification settings - Fork 8.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Kibana 6.5.x does not fully recover when kibana indices are deleted during operation #26845
Comments
Pinging @elastic/kibana-security |
how do i manually create the space:default document? |
If you stop the Kibana server and restart it, the default space document will be created. |
After stumbling on this issue for a few hours, I found a solution.
POST localhost:9200/.kibana_1/_doc/space:default
localhost:9200 being the Elasticsearch instance |
@Bachib you might run into some issues down the road, since you explicitly created the |
I get the same error message, but my root cause is different. When I login as "elastic" super-user all looks fine. But when I try to login with my personal ldap account (with super-user role mappings), I get this error message. So for me the ldap integration seems to be unstable. (v7.5.1) |
What is the best way to get around this? We just experienced the same issue where a policy was created and applied to remove kibana indices, which then resulted in kibana going down and error being throw "application privileges must refer to at least one resource" |
@efernandes-ANDigital if you restart the Kibana server, on startup it will insert the ES documents that the policy potentially deleted. |
Hm... What if downtime is not an option? @kobelb |
If downtime isn't an option, I'd recommend not deleting the |
I don't want to delete the I am trying to restore the Once I do the restore (tried both Curator and manually), I overwrite the existing What can I do at this point? Do I need to create this I have a thread going here as well... |
Hey @danksim, this issue is tracking the behavior of when the Thanks for opening the discuss thread, we use discuss for questions like yours. However, your discuss thread was opened in the Elasticsearch topic. I've moved it to the Kibana topic, as it's more so a Kibana question than an Elasticsearch one. |
I can't believe creating a new fresh system 7.7.2 Kibana has the same issue... I did this to resolve it:
|
@elastic/kibana-core do we actually intend to ever support deleting active |
No, we don't, especially now that our indices are system indices. |
Kibana version: 6.5.x
Describe the bug: If you delete
.kibana*
while Kibana is running, Kibana will create a new.kibana
index and place theconfig:6.5.2
document into this index. Thespace:default
document is never recreated, which will then return a 400 when you try to visit Timelion, Canvas, Machine Learning, Infrastructure, Logs, APM, Graph, or Monitoring. These pages seem to try to load the base domain (https://{{server_name}}:5601/
). Discover, Visualize, Dashboard, Dev Tools, and Management are not impacted, as they seem to load the domain + URI (ex.https://{{server_name:5601/app/kibana#/management
). You must restart Kibana to fix this issue (or manually create thespace:default
document)Steps to reproduce:
DELETE .kibana*
https://kibana.local:5601/
, which will now produce a 400 Bad Request with a response body:{"statusCode":400,"error":"Bad Request","message":"[illegal_argument_exception] application privileges must refer to at least one resource"}
Provide logs and/or server output (if relevant):
log [23:08:18.354] [error][spaces] Unable to navigate to space "default", redirecting to Space Selector. Error: Saved object [space/default] not found
The text was updated successfully, but these errors were encountered: