As per the subject, my goal is to prevent general external access to
elasticsearch, but still allow authenticated access from kibana.
Looking around the internet there are multiple descriptions of how to do
pieces of this, but I haven't come across a good explanation of how to pull
it all together. Hence my post here.
Using nginx, I can set up authenticated access to elasticsearch (as
per Elasticsearch Platform — Find real-time answers at scale | Elastic)
However, there's also the ability to set up basic authentication for
elasticsearch with GitHub - Asquera/elasticsearch-http-basic: HTTP Basic Authentication for Elasticsearch (Discontinued) How
do these two differ / complement each other?
In Kibana3, I know there's the setting in config.js which instructs kibana
to connect to ES with credentials:
elasticsearch: {"http://"+window.location.hostname+":8080",
withCredentials: true},
Does this "withCredentials" option assume the presence of
elasticsearch-http-basic auth ES plugin?
So far I have the ES basic auth working via nginx config on port 8080 (I
haven't installed elasticsearch-http-basic), but Kibana is showing a blank
page with "{{dashboard.current.title}}" and an error on the console:
Uncaught SyntaxError: Unexpected token +
app.js:8 TypeError: Cannot read property 'elasticsearch' of undefined
at new <anonymous> (http://10.2.3.174:8081/app/app.js:22:5857) at d (http://10.2.3.174:8081/app/app.js:8:6414) at Object.e [as instantiate] (http://10.2.3.174:8081/app/app.js:8:6527) at Object.<anonymous> (http://10.2.3.174:8081/app/app.js:8:4811) at Object.d [as invoke] (http://10.2.3.174:8081/app/app.js:8:6414) at http://10.2.3.174:8081/app/app.js:8:6930 at c (http://10.2.3.174:8081/app/app.js:8:5751) at d (http://10.2.3.174:8081/app/app.js:8:5885) at Object.e [as instantiate] (http://10.2.3.174:8081/app/app.js:8:6527) at Object.<anonymous> (http://10.2.3.174:8081/app/app.js:8:4811)
Cheers,
Iain
--
You received this message because you are subscribed to the Google Groups "elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email to elasticsearch+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/elasticsearch/357fd600-0ca9-470f-8cde-24a645672d1d%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.