Kibana/Elasticsearch do not pop up dialog for Username and Password when using Custom Realm with Shield

rbommineni · December 23, 2015, 9:19pm

Hi,

I'm trying to create a custom realm to authenticate users for Kibana and Elasticsearch using
https://github.com/elastic/shield-custom-realm-example and I've setup the configuration for my custom realm in elasticsearch.yml. But neither elasticsearch (localhost:9200) nor kibana (localhost:5601) prompt for a dialog box asking for username and password and throws this exception:

{"error":{"root_cause":[{"type":"security_exception","reason":"missing authentication token for REST request [/]","header":{"WWW-Authenticate":"crowd-challenge"}}],"type":"security_exception","reason":"missing authentication token for REST request [/]","header":{"WWW-Authenticate":"crowd-challenge"}},"status":401}

It works fine with esusers realm though.

versions we are using:
elasticsearch 2.1.0
kibana 4.3.1
shield 2.1.0

jaymode · January 4, 2016, 1:11pm

Hi,

I believe that your custom realm is sending back the incorrect WWW-Authenticate header. It appears that it is sending a value of crowd-challenge, which a browser will not recognize. If you want the authentication dialog box, try sending basic as the value or one of the values.

Topic		Replies	Views
Login Dialog with Shield and Kibana 3? Elasticsearch elastic-stack-security	5	1751	July 6, 2017
Custom Realm - Building UsernamePasswordToken Elasticsearch	8	1767	May 22, 2017
Missing authentication token for REST request Elasticsearch elastic-stack-security	11	29235	July 6, 2017
Security exception Shield Elasticsearch elastic-stack-security	2	1883	January 16, 2017
Custom Realm Example help Elasticsearch	2	622	October 23, 2017

Kibana/Elasticsearch do not pop up dialog for Username and Password when using Custom Realm with Shield

Related topics