ankiit / logstash

Automatically exported from code.google.com/p/logstash
0 stars 0 forks source link

logstash-web: Simple ACLs would be nice #25

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
Simple IP/CIDR ACLs would be nice for the simple logstash-web frontend.

Complex ACLs, AAA, etc, and other extensive access control features are out of 
scope for now. Those are likely best served by putting a real webserver in 
front to do filtering (nginx, apache, etc)

Original issue reported on code.google.com by jls.semi...@gmail.com on 26 Jan 2011 at 7:36

GoogleCodeExporter commented 9 years ago
Very first thing to look at for me: 
user permissions, I want to have one weblog archive/frontend for multiple, not 
related users. each should only see "his" boxes.
without that I can't possibly use it.
i agree the minimum solution would be enough, but after all system logs are 
beyond sensitive, at least in my place i think i'd be halfway to jail if the 
wrong persons got access to someone else's logs.

(fyi: I was referred to logstash by one of the #ceph developers and now looking 
into it some more.)

Original comment by florian....@gmail.com on 21 Apr 2011 at 8:45

GoogleCodeExporter commented 9 years ago
Access control should come soon. 1.0 is due out next week and after that I'll 
be working on new features like web access control, etc.

Can you describe how you want to do access control? Standard web-based logins? 
What's the auth backend (or do you want logstash-web to provide one?)? What 
permissions do you want to give (restrict queries, restrict indexes accessed, 
etc)?

Original comment by jls.semi...@gmail.com on 21 Apr 2011 at 8:50

GoogleCodeExporter commented 9 years ago
I can't figure how to unmask your email here. 
Drop me a line and I'll paypal you some beers and the answers to your question.

Original comment by florian....@gmail.com on 10 May 2011 at 7:30