elasticmachine
commented
3 years ago Pinging @elastic/integrations (Team:Integrations)
Open geekpete opened 5 years ago
elasticmachine
commented
3 years ago Pinging @elastic/integrations (Team:Integrations)
botelastic[bot]
commented
2 years ago This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
ManojS-shetty
commented
2 years ago @geekpete
Please try out the below:
hosts: ["sqlserver://domain//user:password@server01"]and ignore the username and password in config.yml
ManojS-shetty
commented
2 years ago @geekpete Any update on the above suggestion?
ManojS-shetty
commented
2 years ago @geekpete Any Update here?
geekpete
commented
2 years ago Sorry, I'm still working to follow up on this one.
ManojS-shetty
commented
2 years ago @geekpete Any update on the suggested method?
ManojS-shetty
commented
2 years ago @geekpete Any inputs so that we can proceed with the further about this?
geekpete
commented
2 years ago So in the original testing for this issue it looks like we'd tried everything except the way you're suggesting:
hosts: ["sqlserver://domain\user:password@server01"]
hosts: ["sqlserver://domain\\user:password@server01"]
hosts: ["sqlserver://domain/user:password@server01"]
hosts: ["sqlserver://domain\/user:password@server01"]but not with two forward slashes after the domain
hosts: ["sqlserver://domain//user:password@server01"]I'll see if I can get this tested and report back.
ManojS-shetty
commented
2 years ago So in the original testing for this issue it looks like we'd tried everything except the way you're suggesting:
hosts: ["sqlserver://domain\user:password@server01"] hosts: ["sqlserver://domain\\user:password@server01"] hosts: ["sqlserver://domain/user:password@server01"] hosts: ["sqlserver://domain\/user:password@server01"]but not with two forward slashes after the
domainhosts: ["sqlserver://domain//user:password@server01"]I'll see if I can get this tested and report back.
Thank you @geekpete
efd6
commented
2 years ago The issue here is that the \ character is not a valid character for userinfo. This can be worked around by percent encoding the backslash (See https://play.golang.com/p/ldyqlqiG8f7). url.PathEscape should be used on the username prior to constructing the connection URL. This looks like it can be done like this:
diff --git a/metricbeat/mb/parse/url.go b/metricbeat/mb/parse/url.go
index c0b23f421d..5c2ff19e86 100644
--- a/metricbeat/mb/parse/url.go
+++ b/metricbeat/mb/parse/url.go
@@ -71,6 +71,8 @@ func (b URLHostParserBuilder) Build() mb.HostParser {
} else {
user = b.DefaultUsername
}
+ user = url.PathEscape(user)
+
t, ok = conf["password"]
if ok {
pass, ok = t.(string)Until the codebase is adjusted to automatically escape/encode the slash, it's also likely you can configure the string without the slash by manually passing the encoded value %5C directly instead of "\" in the domain user name.
ie for domain user: domain%5Cusername
eg: sqlserver://domain%5Cusername:pass@ip
geekpete
commented
1 year ago Related issue to sanitize input in Kibana https://github.com/elastic/integrations/issues/5213
Please include configurations and logs if available.
For confirmed bugs, please report:
Using a domain within the username in credentials doesn't seem to parse regardless of escaping.
Typical configuration example might look like:
But when attempting to use an Active Domain user rather than the
SAservice account, there doesn't seem to be a way to specify the domain within the hosts connection string and have it work.Examples of what doesn't work:
Example errors
When trying with domain:
If leaving the domain out, the error is that the native user with that name cannot log in as the user with access is the domain user with that name not a native user:
Interestingly the domain credentials can be made to work if set separately via:
Related: