Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

metadata setting is not available for Active Directory realms #45848

Closed
jkakavas opened this issue Aug 22, 2019 · 1 comment · Fixed by #47179
Closed

metadata setting is not available for Active Directory realms #45848

jkakavas opened this issue Aug 22, 2019 · 1 comment · Fixed by #47179
Assignees
@albertzaharovits
Labels
>bug :Security/Authentication Logging in, Usernames/passwords, Realms (Native/LDAP/AD/SAML/PKI/etc)

Comments

@jkakavas
Copy link
Member

jkakavas commented Aug 22, 2019
edited
Loading

This is probably an unintended consequence of #30241 and thus affects > 7.0 . The setting is only available for LDAP realms as it's defined as

 public static final Setting.AffixSetting<List<String>> ADDITIONAL_META_DATA_SETTING = Setting.affixKeySetting(
            RealmSettings.realmSettingPrefix(LdapRealmSettings.LDAP_TYPE), "metadata",
            key -> Setting.listSetting(key, Collections.emptyList(), Function.identity(), Setting.Property.NodeScope));

Was originally reported in the forums
@jkakavas jkakavas added >bug :Security/Authentication Logging in, Usernames/passwords, Realms (Native/LDAP/AD/SAML/PKI/etc) labels Aug 22, 2019
@elasticmachine
Copy link
Collaborator

Pinging @elastic/es-security

@albertzaharovits albertzaharovits self-assigned this Sep 16, 2019
@albertzaharovits albertzaharovits mentioned this issue Sep 26, 2019
Merged
albertzaharovits added a commit that referenced this issue Oct 1, 2019
@albertzaharovits
Fix AD realm additional metadata (#47179)
dea96fb 
Due to a regression bug the metadata Active Directory realm
setting is ignored (it works correctly for the LDAP realm type).
This commit redresses it.

Closes #45848
albertzaharovits added a commit to albertzaharovits/elasticsearch that referenced this issue Oct 1, 2019
@albertzaharovits
Fix AD realm additional metadata (elastic#47179)
4b5d269 
Due to a regression bug the metadata Active Directory realm
setting is ignored (it works correctly for the LDAP realm type).
This commit redresses it.

Closes elastic#45848
This was referenced Oct 1, 2019
Merged
Merged
albertzaharovits added a commit that referenced this issue Oct 1, 2019
@albertzaharovits
Fix AD realm additional metadata (#47179)
78558a7 
Due to a regression bug the metadata Active Directory realm
setting is ignored (it works correctly for the LDAP realm type).
This commit redresses it.

Closes #45848
albertzaharovits added a commit that referenced this issue Oct 1, 2019
@albertzaharovits
Fix AD realm additional metadata (#47179)
d7aaa19 
Due to a regression bug the metadata Active Directory realm
setting is ignored (it works correctly for the LDAP realm type).
This commit redresses it.

Closes #45848
@codebrain codebrain mentioned this issue Oct 25, 2019
Closed
39 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@albertzaharovits albertzaharovits

Labels
>bug :Security/Authentication Logging in, Usernames/passwords, Realms (Native/LDAP/AD/SAML/PKI/etc)
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Fix AD realm additional metadata albertzaharovits/elasticsearch
3 participants
@albertzaharovits @jkakavas @elasticmachine