~medib/opensearch-project-components/+git/opensearch-security:lp-2.8.0

Branch merges

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

f171426... by Mehdi B. on 2023-08-14

changed gradle distro url

41c6ed8... by Mehdi B. on 2023-08-13

changed gradle distro url

b3f78fd... by Mehdi B. on 2023-08-10

changed gradle distro url

2f3b167... by Mehdi B. on 2023-08-08

changed gradle distro url

60f392d... by Darshit Chanpura <email address hidden> on 2023-05-31

Re-adds jakarta dep that was removed due to stale artifact issue with CI (#2816)

Signed-off-by: Darshit Chanpura <email address hidden>

d9322bf... by Ryan Liang <email address hidden> on 2023-05-31

Update 2.8 release notes for security backend (#2819)

Signed-off-by: Ryan Liang <email address hidden>

570d617... by Darshit Chanpura <email address hidden> on 2023-05-31

Separate config option to enable restapi: permissions (#2605) (#2818)

Added config settings
plugins.security.restapi.admin.enabled which enables/disables :resapi permissions.
Default is false

Signed-off-by: Andrey Pleskach <email address hidden>
(cherry picked from commit 6446268bdf4fd9f39d0e669aafa227b582dbf4e6)

Co-authored-by: Andrey Pleskach <email address hidden>

ce5b295... by "opensearch-trigger-bot[bot]" <98922864+opensearch-trigger-bot[bot]@users.noreply.github.com> on 2023-05-30

[FEATURE] usage of JWKS with JWT (w/o OpenID connect) (#2808) (#2815)

* [FEATURE] usage of JWKS with JWT (w/o OpenID connect)
---------

Signed-off-by: Sebastian Michalski <email address hidden>
Signed-off-by: Craig Perkins <email address hidden>
Co-authored-by: Sebastian Michalski <email address hidden>
(cherry picked from commit 4b386719db87b7d7bdc35191d7706f4a3944b2c9)

Co-authored-by: Craig Perkins <email address hidden>

2ebcfa7... by Darshit Chanpura <email address hidden> on 2023-05-30

[Backport 2.8] Rest admin permissions (#2411) (#2807)

* role.yml changes for lron feature (#2789) (#2792)

Signed-off-by: zhichao-aws <email address hidden>
(cherry picked from commit a580dfc6629ae5cc783d253076729270660044cd)

Co-authored-by: zhichao-aws <email address hidden>

* add ml model group system index (#2790) (#2797)

Signed-off-by: Yaliang Wu <email address hidden>
(cherry picked from commit 1bb2ef14f59e8ef2bcee68e65a9e3ec08be988c5)

Co-authored-by: Yaliang Wu <email address hidden>

* Rest admin permissions (#2411)

Permissions for REST admin user

Added granular permissions for all REST API actions in OpenSearch to be individually assigned.

Permissions are:
    - 'restapi:admin/actiongroups' - allow full access to actiongroups
    - 'restapi:admin/allowlist' - allow full access to allowlist
    - 'restapi:admin/internalusers'- allow full access to internalusers
    - 'restapi:admin/nodesdn'- allow full access to nodesdn
    - 'restapi:admin/roles' - allow full access to roles
    - 'restapi:admin/rolesmapping' - allow full access to roles mappings
    - 'restapi:admin/ssl/certs/info' - allow full access to certs info
    - 'restapi:admin/ssl/certs/reload' - allow full access to certs reload
    - 'restapi:admin/tenants' - allow full access to tenants

Adds tests for these permissions.

Signed-off-by: Andrey Pleskach <email address hidden>
(cherry picked from commit d676716e83d1ab387e9e6a0c0f3284e39ed967f5)

* Fixes CI errors

Signed-off-by: Darshit Chanpura <email address hidden>

* Fixes HTTP5 imports

Signed-off-by: Darshit Chanpura <email address hidden>

* Fixes password related changes in tests

Signed-off-by: Darshit Chanpura <email address hidden>

* Update ActionGroupsApiTest.java

Remove unused import

* Incorporates jar hell fix

Signed-off-by: Darshit Chanpura <email address hidden>

---------

Signed-off-by: Darshit Chanpura <email address hidden>
Co-authored-by: opensearch-trigger-bot[bot] <98922864+opensearch-trigger-bot[bot]@users.noreply.github.com>
Co-authored-by: zhichao-aws <email address hidden>
Co-authored-by: Yaliang Wu <email address hidden>
Co-authored-by: Andrey Pleskach <email address hidden>
Co-authored-by: Stephen Crawford <email address hidden>

ae19524... by "opensearch-trigger-bot[bot]" <98922864+opensearch-trigger-bot[bot]@users.noreply.github.com> on 2023-05-27

add ml model group system index (#2790) (#2796)