search

opensearch-project / OpenSearch

🔎 Open source distributed and RESTful search engine.
https://opensearch.org/docs/latest/opensearch/index/
Apache License 2.0
8.83k stars 1.62k forks source link

[Feature Request] API Keys #13509

Closed merlinz01 closed 2 weeks ago

merlinz01 commented 2 weeks ago

Is your feature request related to a problem? Please describe

Elastic has a feature called API Keys that I had been using for ingesting logs. Migrating to OpenSearch, there doesn't seem to be an equivalent.

Describe the solution you'd like

A configurable API Keys feature comparable to Elastic's.

Related component

Other

Describe alternatives you've considered

You can just use a username and password for the API. Could we have some insights as to whether or not this is more or less secure or desirable?

Additional context

No response

andrross commented 2 weeks ago

Thanks @merlinz01. Can you describe the problem that API Keys solves for you so we can evaluate this feature request and work towards a solution that fits into the OpenSearch ecosystem?

merlinz01 commented 2 weeks ago

I had integrated Elastic's Go API into our server, which sent its logs with API-key authentication. It's not really a problem to not have API keys as I can make it send username/password authentication with some small changes; but I thought that if Elastic has that feature it might have some sort of benefit. However I am in favor of not over-complicating things, so if there is no tangible benefit to an API-key feature, don't add it.

merlinz01 commented 2 weeks ago

I see there is already a feature request for it here, so I'll close this one.