daniel-cottone
commented
3 years ago Hey @ayan-usgs, thanks for your suggestion. I think this would be a good idea. Probably what we ought to do is have some configurable authentication method, and then depending on which a user chooses we would need additional configuration. Right now the only authentication that is supported is signing the request using the lambda's secret access key. I still think that should be the default, but we ought to support other methods of authentication as well.
ayan-usgs
🐞 Problem When an AWS Elasticsearch cluster is configured to use a master-user, lambdas attempting to load data from CloudWatch need to authenticate.
🎯 Goal It will help users keep their Elasticsearch clusters secure from unauthorized additions of data.
💡 Possible Solutions Perhaps in two additional arguments can be optionally passed to esLogs for the username and password. They can then be used to facilitate basic authentication.