Secure cURL connections and HTTP connections

louisdeveloper · November 23, 2019, 2:03am

I currently use ElasticSearch 6. * installed on my server.
In it I make cURL connections and access via HTTP directly, without having to enter username and password, just sending the request with HTTP to create and search documents.

For security I restricted the IPs that can access this server.

How do I make these connections require HTTP Basic Authentication, always having to pass a username and password?

I checked the X-Pack, but as I understand it, this type of feature requires a payment to use it. Am I correct or is there another alternative to enable this basic authentication?

stephenb · November 23, 2019, 2:15am

Actually Basic authentication is part of the Basic (Free) feature set. See here

As long as you downloaded the default distribution from Elastic Basic security is included.

Here is a Blog on the topic.

louisdeveloper · November 23, 2019, 2:49am

Thank you for the informations.

In this case I should just run this command on my server, correct?

bin/elasticsearch-setup-passwords interactive -u "http://localhost:9201"

Rudd5TT · November 23, 2019, 5:44am

Thank you for reaching out,
this information will surely help me!!!

system · December 21, 2019, 5:44am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Authentication Clarification for Elasticsearch 6+ Elasticsearch	7	1768	April 14, 2018
HTTP security Elasticsearch	2	286	July 6, 2017
Can anyone help me how can i set authentication in elastic search 6.2 Elasticsearch elastic-stack-security	3	351	March 25, 2019
Elasticsearch Accessible Without Authentication Elasticsearch	7	1967	November 20, 2019
Basic Authentication of ES without X-Pack Elasticsearch	5	13326	August 25, 2017

Secure cURL connections and HTTP connections

Related Topics