Reload secure settings for plugins #31383
Conversation
Cache of clients by name which can be cleared when secure settings get updated.
albertzaharovits
added
>feature
:Core/Infra/Plugins
|
Pinging @elastic/es-core-infra |
Allow plugin install even if no azure settings are present atm
|
Both the gradle build https://elasticsearch-ci.elastic.co/job/elastic+elasticsearch+pull-request/11892 and the packaging tests https://elasticsearch-ci.elastic.co/job/elastic+elasticsearch+pull-request+packaging-tests-sample/3495 have failed because this PR introduced stricter behavior of not allowing the installation of the azure repository plugin if its client settings are not already defined. This strictness has been reverted. After all, this new functionality allows one to defer specifying or changing the secure settings (e27f097) |
|
test this please |
|
The previous gradle build failure (https://elasticsearch-ci.elastic.co/job/elastic+elasticsearch+pull-request/11893/console) was unrelated to the changes herein. I've taken care of it, see #30942 (comment) |
|
Previous gradle build https://elasticsearch-ci.elastic.co/job/elastic+elasticsearch+pull-request/11894 and packaging tests https://elasticsearch-ci.elastic.co/job/elastic+elasticsearch+pull-request+packaging-tests-sample/3497 have completed successfully. |
|
Previous gradle build https://elasticsearch-ci.elastic.co/job/elastic+elasticsearch+pull-request/11895 and packaging tests https://elasticsearch-ci.elastic.co/job/elastic+elasticsearch+pull-request+packaging-tests-sample/3498 have completed successfully. |
|
Diligence paid off. It reproduces locally 80% of the time. I have pushed 56f741e to mitigate it. In short, the problem is that the NodeRequest will clear the password on the original NodeSRequest.
|
|
Previous gradle build https://elasticsearch-ci.elastic.co/job/elastic+elasticsearch+pull-request/11899 and packaging tests https://elasticsearch-ci.elastic.co/job/elastic+elasticsearch+pull-request+packaging-tests-sample/3502 have completed successfully. |
* master: Add get stored script and delete stored script to high level REST API - post backport fix Add get stored script and delete stored script to high level REST API (#31355) Core: Combine Action and GenericAction (#31405) Fix reference to XContentBuilder.string() (#31337) Avoid sending duplicate remote failed shard requests (#31313) Fix defaults in GeoShapeFieldMapper output (#31302) RestAPI: Reject forcemerge requests with a body (#30792) Packaging: Remove windows bin files from the tar distribution (#30596) Docs: Use the default distribution to test docs (#31251) [DOCS] Adds testing for security APIs (#31345) Clarify that IP range data can be specified in CIDR notation. (#31374) Use system context for cluster state update tasks (#31241) Percentile/Ranks should return null instead of NaN when empty (#30460) REST high-level client: add validate query API (#31077) Move language analyzers from server to analysis-common module. (#31300) [Test] Fix :example-plugins:rest-handler on Windows Expose lucene's RemoveDuplicatesTokenFilter (#31275) Reload secure settings for plugins (#31383) Remove some cases in FieldTypeLookupTests that are no longer relevant. (#31381) Ensure we don't use a remote profile if cluster name matches (#31331) [TEST] Double write alias fault (#30942) [DOCS] Fix version in SQL JDBC Maven template [DOCS] Improve install and setup section for SQL JDBC SQL: Fix rest endpoint names in node stats (#31371) Support for remote path in reindex api - post backport fix Closes #22913 [ML] Put ML filter API response should contain the filter (#31362) Support for remote path in reindex api (#31290) Add byte array pooling to nio http transport (#31349) Remove trial status info from start trial doc (#31365) [DOCS] Adds links to release notes and highlights add is-write-index flag to aliases (#30942) Add rollover-creation-date setting to rolled over index (#31144) [ML] Hold ML filter items in sorted set (#31338) [Tests] Fix edge case in ScriptedMetricAggregatorTests (#31357)
This is the merge PR of the reload-secure-store-action feature branch, progress of which has been tracked in #29135. This is not intended to be reviewed as a whole, small incremental changes have been reviewed independently. The PR is opened to have CI run (several times).
CC @elastic/es-security
Closes #29135