Provide Authentication In Head


(Sumit Guptaa) #1

Hi All,

Can Anybody tell me how we can provide authentication in ES head....so nobody wants to delete my index or create an index etc....is it possible in Elasticsearch.

Thanx

Regards,
Sumit Gupta


(Ivan Brusic) #2

There are a couple of options:

One is the jetty plugin: https://github.com/sonian/elasticsearch-jetty

The other is to lock things down at the server level. My load
balancer/firewalls disallows any REST requests that are not GETs. Full
REST interface is enabled while on the same machine via localhost
only.

--
Ivan

On Mon, Aug 27, 2012 at 11:06 AM, Sumit Guptaa
sumit.gupta.ngi@gmail.com wrote:

Hi All,

Can Anybody tell me how we can provide authentication in ES head....so
nobody wants to delete my index or create an index etc....is it possible in
Elasticsearch.

Thanx

Regards,
Sumit Gupta

--
View this message in context: http://elasticsearch-users.115913.n3.nabble.com/Provide-Authentication-In-Head-tp4022173.html
Sent from the ElasticSearch Users mailing list archive at Nabble.com.

--

--


(andreas.chatzakis) #3

Another option is to use e.g. apache web server as a reverse proxy and
enforce authentication via mod_auth.
Then you would setup the firewall on the elastic search instance(s) to only
allow access to elasticsearch port from the web server.

On Monday, August 27, 2012 9:27:29 PM UTC+3, Ivan Brusic wrote:

There are a couple of options:

One is the jetty plugin: https://github.com/sonian/elasticsearch-jetty

The other is to lock things down at the server level. My load
balancer/firewalls disallows any REST requests that are not GETs. Full
REST interface is enabled while on the same machine via localhost
only.

--
Ivan

On Mon, Aug 27, 2012 at 11:06 AM, Sumit Guptaa
<sumit.g...@gmail.com <javascript:>> wrote:

Hi All,

Can Anybody tell me how we can provide authentication in ES head....so
nobody wants to delete my index or create an index etc....is it possible
in
Elasticsearch.

Thanx

Regards,
Sumit Gupta

--
View this message in context:
http://elasticsearch-users.115913.n3.nabble.com/Provide-Authentication-In-Head-tp4022173.html
Sent from the ElasticSearch Users mailing list archive at Nabble.com.

--

--


(Hendrik) #4

Maybe this is interesting for you

Am Dienstag, 28. August 2012 10:13:00 UTC+2 schrieb andreas.chatzakis:

Another option is to use e.g. apache web server as a reverse proxy and
enforce authentication via mod_auth.
Then you would setup the firewall on the elastic search instance(s) to
only allow access to elasticsearch port from the web server.

On Monday, August 27, 2012 9:27:29 PM UTC+3, Ivan Brusic wrote:

There are a couple of options:

One is the jetty plugin: https://github.com/sonian/elasticsearch-jetty

The other is to lock things down at the server level. My load
balancer/firewalls disallows any REST requests that are not GETs. Full
REST interface is enabled while on the same machine via localhost
only.

--
Ivan

On Mon, Aug 27, 2012 at 11:06 AM, Sumit Guptaa
sumit.g...@gmail.com wrote:

Hi All,

Can Anybody tell me how we can provide authentication in ES head....so
nobody wants to delete my index or create an index etc....is it
possible in
Elasticsearch.

Thanx

Regards,
Sumit Gupta

--
View this message in context:
http://elasticsearch-users.115913.n3.nabble.com/Provide-Authentication-In-Head-tp4022173.html
Sent from the ElasticSearch Users mailing list archive at Nabble.com.

--

--
You received this message because you are subscribed to the Google Groups "elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email to elasticsearch+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/85d2c60f-78af-43bb-b88d-59d44b37eb8a%40googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.


(system) #5