-
Notifications
You must be signed in to change notification settings - Fork 204
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Added 'region' and 'insecure' flag #84
base: master
Are you sure you want to change the base?
Conversation
…gion (#1) hard-coded proxy.service value to "es" added insecure flag and logic to avoid SSL verification
* added region flag to avoid having to parse the endpoint to get the region hard-coded proxy.service value to "es" added insecure flag and logic to avoid SSL verification * cleaning up code, moving insecure logic to main function (TODO: still need to test) * removed redundant use of insecure flag
Also im not sure where to bump the version, can you point me where to do that? thanks 👍 |
Thank you @DustinKLo. I like the SSL insecure option, however, I'm a bit concerned about having 'region' as a mandatory option and changing the current behavior of the proxy as this change will break many implementations of the proxy across multiple users who have the proxy installed and configured as part of their CI/CD. This change will break it for them and I want to keep backward compatibility within v1.x. With that said, I've started the development of v2.x which WILL break the backward compatibility. In v2.x I'm moving command line options and parameters to a config file to make it easier to update the settings. I've included insecure ssl and region in the config in v2.0. Please have a look and let me know if you have any ideas. Thanks, |
@abutaha thanks for the review 👍 i can make the Let me know what you think, i can continue development if you want to go this direction |
Yes please go ahead. Just ensure to pull the latest master. Thanks, |
* Added support for assuming a role that has access to ElasticSearch * Fixed small conflicts * Added new contributors Co-authored-by: Joshua Garnett <josh.garnett@gmail.com> Co-authored-by: Dido (Christoph Poelt) <christoph.poelt@valiton.com> Co-authored-by: Muslim AbuTaha <muslim.adel@gmail.com>
…a region flag) (#4) made -region flag optional, if not supplied will go through the endpoint parsing logic instead edited README.md description for region flag added "assume" description to --help in README.md
@abutaha thanks for the response |
This seems like something that is ready to be merged but comms ended abruptly. Sure would appreciate having this fixed 👍🏻.Thank you for the great work on this tool 🙏🏻 . |
I've been experiencing the 403 as well but testing the changes on |
related issues:
the
region
andservice
values are parsed from theendpoint
flag but sometimes the url is inconsistent with how the code is expecting it, so theregion
value is an empty string which returns a403
now the proxy has a optional
region
flag (ie.-region us-west-2
)the proxy also assumes that your server has the proper SSL certificates and will return a verification error when you don't
i added a optional
insecure
flag to fix that issue