Closed bagipriyank closed 11 months ago
Helm install after uninstall of opensearch doesn't update the security config
Helm install opensearch with
config.yml: |- _meta: type: "config" config_version: "2" config: dynamic: http: anonymous_auth_enabled: false authc: basic_internal_auth_domain: description: "Authenticate via HTTP Basic against internal users database" http_enabled: true transport_enabled: true order: 0 http_authenticator: type: basic challenge: true authentication_backend: type: intern saml_auth_domain: order: 1 description: "SAML provider" http_enabled: true transport_enabled: false http_authenticator: type: saml challenge: true config: idp: metadata_url: ${idp_metadata_url} entity_id: ${idp_entity_id} sp: entity_id: ${sp_entity_id} kibana_url: ${kibana_url} exchange_key : ${exchange_key} roles_key: Roles authentication_backend: type: noop
notice the value of challenge is true for basic_internal_auth_domain
challenge
true
basic_internal_auth_domain
Now do helm uninstall do get rid of the pods, and then do helm install again. This time use challenge: false for basic_internal_auth_domain.
challenge: false
Value of challenge should update in config/opensearch-security/config.yml to false but it stays as true
config/opensearch-security/config.yml
false
https://forum.opensearch.org/t/azure-sso-integration-issue/15745/10?u=pbagrecha
Please let me know if this is not the right repository, and if you can point me to the right place.
Hi, @peterzhuamazon , @gaiksaya , @prudhvigodithi , could you help move this issue to helm-charts repo, thanks
This is a duplicate of #303
Close this as it is duplicate to #303.
What is the bug?
Helm install after uninstall of opensearch doesn't update the security config
How can one reproduce the bug?
Helm install opensearch with
notice the value of
challenge
istrue
forbasic_internal_auth_domain
Now do helm uninstall do get rid of the pods, and then do helm install again. This time use
challenge: false
forbasic_internal_auth_domain
.What is the expected behavior?
Value of
challenge
should update inconfig/opensearch-security/config.yml
tofalse
but it stays astrue
Do you have any additional context?
https://forum.opensearch.org/t/azure-sso-integration-issue/15745/10?u=pbagrecha
Please let me know if this is not the right repository, and if you can point me to the right place.