New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bug 1825955: Updating Kibana to use opendistro security plugin multitenancy #1868
Bug 1825955: Updating Kibana to use opendistro security plugin multitenancy #1868
Conversation
/hold |
we also seem to be missing index patterns for users... i'll add it onto here |
5625254
to
e17ab57
Compare
@jcantrill @vimalk78 However, with an index pattern manually created i can see logs each user is only allowed to see with the following changes. |
We originally discussed this being static, atleast for admins. @lukas-vlcek is there a way insert a document when an index is created?
If user's are limited to their own tenant, then this isn't an issue. If all user's are using a single tenant then I don't see how we can offer the ability to create visualizations. For starters we may need to limit them to only querying for logs and possibly even identifying how to make that happen for them.
|
e17ab57
to
8651d9b
Compare
8651d9b
to
7e4cd32
Compare
6799388
to
aa9634d
Compare
seeing an issue where plugin status gets stuck with the following after a kibana restart: need to investigate further |
I believe this is stemming from the fact that the kibana server is being assigned the Update: fixed -- for some reason my kibana user was missing a cluster perm |
/refresh |
/test images |
5155225
to
90e15e3
Compare
/refresh |
/retest |
need to rebase after #1879 merges |
/retest |
1 similar comment
/retest |
/retest |
/refresh |
/retest |
@ewolinetz: This pull request references Bugzilla bug 1825955, which is valid. The bug has been moved to the POST state. The bug has been updated to refer to the pull request using the external bug tracker. 3 validation(s) were run on this bug
In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/retest |
c6c32db
to
c8332c9
Compare
smoke testing seems to be failing due to lack of being able to deploy CLO |
/retest |
1 similar comment
/retest |
/refresh |
c8332c9
to
0c1ad62
Compare
/lgtm |
0c1ad62
to
4bfd2c4
Compare
/hold cancel |
/lgtm |
@ewolinetz: All pull requests linked via external trackers have merged: openshift/elasticsearch-operator#309, openshift/origin-aggregated-logging#1868. Bugzilla bug 1825955 has been moved to the MODIFIED state. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: ewolinetz, vimalk78 The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
Logging in to Kibana showed that we were missing READ permissions accessing the
.kibana
indexNote: I'm not sure if this will need to change when we move to multitenancy via Kibana as the index will likely be different.