Everything was working fine until installing shield. This is my first time to configure the shield plug. Could you please help to resolve this issue? Thank you very much!
My environment:
OS: CentOS 7
elasticsearch-2.1.1
logstash-2.1.1
kibana-4.3.1
[2016-01-21 21:41:08,099][INFO ][rest.suppressed ] /_bulk Params: {}
ElasticsearchSecurityException[missing authentication token for REST request [/_bulk]]
at org.elasticsearch.shield.support.Exceptions.authenticationError(Exceptions.java:39)
at org.elasticsearch.shield.authc.DefaultAuthenticationFailureHandler.missingToken(DefaultAuthenticationFailureHandler.java:65)
at org.elasticsearch.shield.authc.InternalAuthenticationService.authenticate(InternalAuthenticationService.java:96)
at org.elasticsearch.shield.rest.ShieldRestFilter.process(ShieldRestFilter.java:71)
at org.elasticsearch.rest.RestController$ControllerFilterChain.continueProcessing(RestController.java:265)
at org.elasticsearch.rest.RestController.dispatchRequest(RestController.java:176)
at org.elasticsearch.http.HttpServer.internalDispatchRequest(HttpServer.java:128)
at org.elasticsearch.http.HttpServer$Dispatcher.dispatchRequest(HttpServer.java:86)
at org.elasticsearch.http.netty.NettyHttpServerTransport.dispatchRequest(NettyHttpServerTransport.java:348)
at org.elasticsearch.http.netty.HttpRequestHandler.messageReceived(HttpRequestHandler.java:63)
at org.jboss.netty.channel.SimpleChannelUpstreamHandler.handleUpstream(SimpleChannelUpstreamHandler.java:70)
at org.jboss.netty.channel.DefaultChannelPipeline.sendUpstream(DefaultChannelPipeline.java:564)
... ....
... ...
Logstash:
Attempted to send a bulk request to Elasticsearch configured at '["http://10.7.1.86:9200/"]', but an error occurred and it failed! Are you sure you can reach elasticsearch from this machine using the configuration provided? {:client_config=>{:hosts=>["http://10.7.1.86:9200/"], :ssl=>nil, :transport_options=>{:socket_timeout=>0, :request_timeout=>0, :proxy=>nil, :ssl=>{}}, :transport_class=>Elasticsearch::Transport::Transport::HTTP::Manticore, :headers=>{"Authorization"=>"Basic ZWxrOmtvYmF0aW1l"},
Elasticsearch:
[2016-01-22 15:37:55,668][INFO ][rest.suppressed ] /_bulk Params: {}
ElasticsearchSecurityException[unable to authenticate user [elk] for REST request [/_bulk]]
at org.elasticsearch.shield.support.Exceptions.authenticationError(Exceptions.java:39)
at org.elasticsearch.shield.authc.DefaultAuthenticationFailureHandler.unsuccessfulAuthentication(DefaultAuthenticationFailureHandler.java:35)
at org.elasticsearch.shield.authc.InternalAuthenticationService.authenticate(InternalAuthenticationService.java:111)
at org.elasticsearch.shield.rest.ShieldRestFilter.process(ShieldRestFilter.java:71)
at org.elasticsearch.rest.RestController$ControllerFilterChain.continueProcessing(RestController.java:265)
at org.elasticsearch.rest.RestController.dispatchRequest(RestController.java:176)
Note. In my case, with the last version of everything, on a centos, I have still habe this as logs in elasticsearch, but in kibana the roles are working as expected..
Can this error be generated if we have a dashboard with multiple indices, and we have access only to one part of them?
This exception may occur in normal operation. What happens is a browser/client will send a request to a server without authentication credentials and then you get the missing authentication token exception, which will return to the browser/client as a challenge for authentication. This causes the client to request credentials from the user (basic auth popup in a browser) and send them back to the server.
Having the same issue, did anyone figure out the solution ? I saw some people just upgraded and it worked and for some like above it did not. Also it there any specific reason for this issue to happen?
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.