Closed tarnjeetsingh closed 11 months ago
@tarnjeetsingh This seems more like an issue with yaml parsing. Can you please refer https://github.com/opensearch-project/helm-charts/issues/268 to see sample config.yml
and modify your settings according to that and then try?
CC: @prudhvigodithi
Yes it was resolved , actually it was the secret mounts that was creating mess in the security config, figured that out Thanks for the help
*Description
I am trying to add saml as the backend as per the official documentation it is mounted as such , but when it tries to run during the bootstrapping it give the following error
[2023-11-07T17:49:59,675][ERROR][o.o.s.c.ConfigurationRepository] [opensearch-cluster-master-2] Cannot apply default config (this is maybe not an error!) java.security.PrivilegedActionException: null at java.security.AccessController.doPrivileged(AccessController.java:573) ~[?:?] at org.opensearch.security.support.ConfigHelper.uploadFile(ConfigHelper.java:86) ~[opensearch-security-2.9.0.0.jar:2.9.0.0] at org.opensearch.security.support.ConfigHelper.uploadFile(ConfigHelper.java:65) ~[opensearch-security-2.9.0.0.jar:2.9.0.0] at org.opensearch.security.configuration.ConfigurationRepository.lambda$new$0(ConfigurationRepository.java:146) [opensearch-security-2.9.0.0.jar:2.9.0.0] at java.lang.Thread.run(Thread.java:833) [?:?] Caused by: com.fasterxml.jackson.dataformat.yaml.snakeyaml.error.MarkedYAMLException: while parsing a block mapping in 'reader', line 32, column 11: type: saml ^ expected, but found ''
in 'reader', line 42, column 13:
exchange_key: "e2fc20c4cca8f4242 ...
^
at [Source: (FileReader); line: 42, column: 13]
If tried manually it says issue in opensearch security 7 format
ERR: Seems ../../../config/opensearch-security/config.yml is not in OpenSearch Security 7 format: com.fasterxml.jackson.dataformat.yaml.snakeyaml.error.MarkedYAMLException: while parsing a block mapping in 'reader', line 32, column 11: type: saml ^ expected, but found ''
in 'reader', line 42, column 13:
exchange_key: "e2fc20c4cca8f4242 ...
^
at [Source: (FileReader); line: 42, column: 13] To Reproduce Steps to reproduce the behavior:
If true a lot of kerberos/security related debugging output will be logged to standard out
Expected behavior Saml config should be uploaded and usable
Chart Name opensearch-2.14.1
Screenshots If applicable, add screenshots to help explain your problem.