Create HTTPS Enabled Elasticsearch API

ankitdevnalkar · June 3, 2021, 1:55pm

While going through the document of creating an Elasticsearch API, there is a note for http.ssl.enabled node. It is asking to specify https while creating API key, but I am bit confused that where I need to mention about https

Do I need to mention it somewhere in the POST request that is performed to generate the API key ?

POST /_security/api_key
{
  "name": "my-api-key",
  "expiration": "1d", 
  "role_descriptors": { 
    "role-a": {
      "cluster": ["all"],
      "index": [
        {
          "names": ["index-a*"],
          "privileges": ["read"]
        }
      ]
    },
  "metadata": {
    "application": "my-application",
    "environment": {
       "level": 1,
       "trusted": true,
       "tags": ["dev", "staging"]
    }
  }
}

ankitdevnalkar · June 3, 2021, 8:11pm

can anyone help ?

warkolm · June 7, 2021, 4:49am

Based on the example on the page directly below this note, I take that to mean if you are using curl. You are safe if you use Kibana that is connected to a TLS secured Elasticsearch cluster.

ankitdevnalkar · June 7, 2021, 7:51pm

Thanks @warkolm

system · July 5, 2021, 7:52pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.