search

opensearch-project / security

🔐 Secure your cluster with TLS, numerous authentication backends, data masking, audit logging as well as role-based access control on indices, documents, and fields
https://opensearch.org/docs/latest/security-plugin/index/
Apache License 2.0
180 stars 264 forks source link

SAML auth uses legacy `_opendistro` route #2060

Open cwperks opened 1 year ago

cwperks commented 1 year ago

OpenSearch Security 2.1.0 release broke SAML authentication when a change in security-dashboards-plugin (https://github.com/opensearch-project/security-dashboards-plugin/pull/895) to replace SAML routes from using legacy /_opendistro/_security/... to using /_plugins/_security was included without a corresponding change in this repo.

The change in security-dashboards-plugin has since been reverted (https://github.com/opensearch-project/security-dashboards-plugin/pull/1035) and the documentation website was changed to refer back to the legacy urls (https://github.com/opensearch-project/documentation-website/pull/877).

There is an open PR to support the /_plugins/_security/... route for SAML in this repo (https://github.com/opensearch-project/security/pull/1936).

peternied commented 1 year ago

@cliu123 Can you make sure all the required changes go in together?

cwperks commented 1 year ago

[Triage] @cwperks Will open a PR with this change to solicit feedback.