New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Kibana does not start when kibana_system
user's password includes %
character
#75542
Comments
same here |
For me the error occurred after the Upgrade from 7.8.1 to 7.9. |
I can also confirm this. Removing the % from By the way, here is how I reset my Elasticsearch user (foo) password: curl -u foo -XPUT 'https://localhost:9200/_xpack/security/user/foo/_password?pretty -H 'Content-Type: application/json' -d'
{
"password": "changeme"
}
' Source: https://discuss.elastic.co/t/i-lost-the-password-that-has-been-changed/91867 |
Pinging @elastic/kibana-security (Team:Security) |
Pinging @elastic/kibana-platform (Team:Platform) |
@elastic/kibana-platform could this be related to the new ES Client? (cc @delvedor) |
Hello! How are you passing the password to the client? |
@delvedor it looks like we're using the kibana/src/core/server/elasticsearch/client/client_config.ts Lines 89 to 94 in 1ad68fd
|
@pgayvallet I don't think encoding is the problem, the only thing the client is doing is base64 encoding the username and password for the basic authentication header. > Buffer.from('username:pas%world').toString('base64')
'dXNlcm5hbWU6cGFzJXdvcmxk'
> Buffer.from('dXNlcm5hbWU6cGFzJXdvcmxk', 'base64').toString()
'username:pas%world' |
Hum, Looking at the stack it's not just using b64, but And decoding a plain % causes an error:
@delvedor Maybe the user/password are not properly encoded when injected from |
I fear I am missing something, didn't you said that you are using the |
Maybe it's because of kibana/src/core/server/elasticsearch/legacy/elasticsearch_client_config.ts Lines 140 to 142 in 1ad68fd
|
We were too late to get a fix into v7.9.3 so the fix will be released as part of v7.10.0 |
Kibana version: 7.9.0
Elasticsearch version: 7.9.0
Server OS version: Ubuntu 18.04
Original install method (e.g. download page, yum, from source, etc.): tar
Describe the bug:
Kibana does not start if password of
kibana_system
user includes percent character:%
.Steps to reproduce:
kibana_system
password tochangeme%
elasticsearch.username: "kibana_system"
andelasticsearch.password: "changeme%"
in kibana.ymlURIError: URI malformed
. Full error below.Expected behavior:
Accept all special characters for
kibana_system
password.Screenshots (if relevant):
Errors in browser console (if relevant):
Provide logs and/or server output (if relevant):
Any additional context:
Similar to #66412
The text was updated successfully, but these errors were encountered: