[Bug Fix] Fix the demo configuration script and remove the admin credential from internal_user.yml
#3449
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…of internal users file Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Codecov Report
@@ Coverage Diff @@
## main #3449 +/- ##
============================================
- Coverage 64.56% 64.54% -0.02%
+ Complexity 3545 3544 -1
============================================
Files 269 269
Lines 20363 20363
Branches 3376 3376
============================================
- Hits 13147 13143 -4
- Misses 5525 5529 +4
Partials 1691 1691 |
|
Note: the BWC failure is expected due to the release related version changes. |
RyanL1997
requested review from
cliu123,
cwperks,
DarshitChanpura,
davidlago,
peternied,
stephen-crawford,
reta and
willyborankin
as code owners
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
Signed-off-by: Ryan Liang <jiallian@amazon.com>
2 tasks
peternied
reviewed
Oct 4, 2023
| @@ -52,6 +58,33 @@ jobs: | |||
| - name: Checkout security | |||
| uses: actions/checkout@v4 | |||
|
|
|||
| - name: Insert Admin Credential on Linux | |||
There was a problem hiding this comment.
What is broken without this section?
There was a problem hiding this comment.
Based on the log:
- org.opensearch.security.InitializationIntegrationTests.testDefaultConfig
- org.opensearch.security.InitializationIntegrationTests.testInvalidDefaultConfig
- org.opensearch.security.TransportUserInjectorIntegTest.testSecurityUserInjection
- org.opensearch.security.SlowIntegrationTests.testDelayInSecurityIndexInitialization
For example, the test of InitializationIntegrationTests.testDefaultConfig is using the admin admin credential to send out the request:
peternied
reviewed
Oct 4, 2023
| @@ -10,13 +10,6 @@ _meta: | |||
|
|
|||
| ## Demo users | |||
|
|
|||
| admin: | |||
There was a problem hiding this comment.
Does the cluster fail to startup with this change? Could you include what that looks like?
|
We do not want a cluster to start without admin credentials. What do you think about closing this @RyanL1997 ? |
|
@RyanL1997 Since the password change was reverted in 2.11 - lets regroup and figure out how to approach this. I'm going to close out this PR - we can reopen if we need it. Thanks |
23 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
By working with @DarshitChanpura for addressing the following issue:
We need the initiation of the cluster to be failed once we encountered a failure of our demo configuration script. This PR introduces the method that if we failed to set up a admin credential during the set up of demo configuration script, it will lead to an absent of admin credential section in
internal_users.yml, so that the initiation of the cluster will be failed.Bug fix
The cluster initiation will be succeed and keep using the
admin:admincredential even if the there is an hard exit on the set up on demo configuration script.Issues Resolved
Testing
CI
Check List
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.