Comments (11)
[Triage] Hi @hengirmen, thank you for filing this issue and the detailed info. Someone will reach out for some UX/UI guidance from another project member and hopefully we can improve this for you! You are also encouraged to open a pull request with the change in behavior should you be interested in seeing this change expedited.
from security-dashboards-plugin.
Hi @scrawfor99 , thanks for the response. Any updates yet?
from security-dashboards-plugin.
Thanks for checking in @hengirmen, my team is entering it a new sprint next week and I've earmarked this issue. More updates forthcoming...
from security-dashboards-plugin.
Will this be backported into prior versions that include the bug? Also, what is the workaround for someone who has security enabled and wants to suppress the popup? Is it enough to map a role to a default tenant?
from security-dashboards-plugin.
@wbeckler There is no planned patch releases for any of the impacted branches so while it can be backported to those branches, it would never be officially released. This bug impacts versions 2.7, 2.8, 2.9, 2.10 and 2.11.
The workaround is to disable multi-tenancy through opensearch_dashboards.yml
instead of disabling through the UI dynamically.
> opensearch_dashboards.yml
opensearch_security.multitenancy.enabled: false
Please note that this settings acts as a feature flag and to re-enable multi-tenancy would require a reboot of OSD. When this setting is set to false, you cannot enable multi-tenancy through the Security pages in OSD.
![Screenshot 2024-02-01 at 9 45 43 AM](https://private-user-images.githubusercontent.com/17432265/301543464-68e6c8e8-c681-4ed1-a8e2-9ddab9420690.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.wA8CbYKxbF5BO8KloUCbgR6uZhSCC4TiUJrCd0yIGlM)
from security-dashboards-plugin.
Can this be backported to at least 2.11, so that future patches will include that fix?
from security-dashboards-plugin.
@wbeckler the change is ready to be backported to 2.11: #1765
Is there a planned patch release for 2.11.1?
from security-dashboards-plugin.
Is there a planned patch release for 2.11.1
2.11.1 is already released. There is no current plan for 2.11.2. Generally only security fixes are included for patch releases.
from security-dashboards-plugin.
oops.. I meant 2.11.2
from security-dashboards-plugin.
Once 2.12 goes out, there will not be 2.11 patches anyway.
from security-dashboards-plugin.
In that case I will close: #1765
from security-dashboards-plugin.
Related Issues (20)
- [AUTOCUT] Integration Test failed for securityDashboards: 2.15.0 HOT 9
- [RELEASE] Release version 2.16.0 HOT 2
- [Enhancement] Remove service account code in main HOT 2
- [FEATURE] Deprecate/remove aggregation view HOT 1
- [FEATURE] Support JDK 21 for main branch HOT 1
- [BUG] Remove AOSS data sources from the data source picker HOT 1
- [AUTOCUT] Integration Test failed for securityDashboards: 2.15.0 HOT 6
- [BUG] Missing OIDC refresh token calls in case of expired id token HOT 1
- [RELEASE] Release version 2.15.0 HOT 2
- [BUG] Tenant is defaulting incorrectly based on the ordering of: opensearch_security.multitenancy.tenants.preferred HOT 4
- [FEATURE] Security Plugin Navigation Changes HOT 1
- [BUG] Session expiration and keepalive settings ignored HOT 2
- [BUG] Missing background refresh of OIDC access_token (for /app/dashboards) HOT 1
- [AUTOCUT] Integration Test failed for securityDashboards: 1.3.18 HOT 2
- [AUTOCUT] Distribution Build Failed for securityDashboards-2.16.0 HOT 2
- [BUG] Build.sh script failure HOT 2
- Read-only user doesn't see Discover menu HOT 4
- [BUG] Creating index_pattern via API/Curl for global tenant doesn't work HOT 3
- [FEATURE] Create a E2E for OIDC IdP behind a proxy HOT 1
- [FEATURE] Retry Bootstrap Step for OSD HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from security-dashboards-plugin.