Some settings are not returned via the nodes settings API | Elasticsearch Guide [7.7]

原文地址: https://www.elastic.co/guide/en/elasticsearch/reference/7.7/security-trb-settings.html, 原文档版权归 www.elastic.co 所有

IMPORTANT: No additional bug fixes or documentation updates will be released for this version. For the latest information, see the current release documentation.

» » »

« Troubleshooting security Authorization exceptions »

Some settings are not returned via the nodes settings APIedit

Symptoms:

When you use the nodes info API to retrieve settings for a node, some information is missing.

Resolution:

This is intentional. Some of the settings are considered to be highly sensitive: all ssl settings, ldap bind_dn, and bind_password. For this reason, we filter these settings and do not expose them via the nodes info API rest endpoint. You can also define additional sensitive settings that should be hidden using the xpack.security.hide_settings setting. For example, this snippet hides the url settings of the ldap1 realm and all settings of the ad1 realm.

xpack.security.hide_settings: xpack.security.authc.realms.ldap1.url,
xpack.security.authc.realms.ad1.*

« Troubleshooting security Authorization exceptions »