bitnami / charts

Bitnami Helm Charts
https://bitnami.com
Other
9.05k stars 9.22k forks source link

OpenSearch Security plugin installed but disabled. This can expose your configuration (including passwords) to the public #30242

Open yanone1 opened 2 weeks ago

yanone1 commented 2 weeks ago

Name and Version

bitnami/opensearch-1.2.6

What architecture are you using?

None

What steps will reproduce the bug?

  1. in a google cloud environment -gke 1.30.5-gke.1014001
  2. helm install.
  3. using gce-internal ingress -this is not a related issue.

What is the expected behavior?

I need to have the security plugin enabled using the provided certificate files. at the dashboard under management to see the security plugin UI. login to the dashboard with username and password.

What do you see instead?

no login prompt for the dashboard. no security plugin enabled.

carrodher commented 2 weeks ago

Could you please describe how are you installing the plugins? Please note there is a plugins parameter you can use to specify the plugins to be installed, see https://github.com/bitnami/charts/tree/main/bitnami/opensearch#opensearch-cluster-parameters

yanone1 commented 2 weeks ago

The plugin will be installed ,with or without specifying with : plugins -tried it already . at the pod itself i do see it installed ,and it also seen at the logs . i can also see that at the logs that it installed but disabled . i did try to specify some : extraConfig for the plugin - that didn't help either . Documentation are unclear ,between distores and charts , what need to be specify in order to enable the plugin . I can also see at the pod itself (master) "/opt/bitnami/opensearch/plugins/opensearch-security/tools" - the plugin files "