You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to Search Guard
With the latest release 2.3.3 BETA 3 how does one go about allow anonymous users? I tried changing anonymous_auth_enabled:false to true but I still get:
[2016-05-31 14:54:13,115][DEBUG][com.floragunn.searchguard.http.XFFResolver] no xff done true,false,class org.elasticsearch.http.netty.NettyHttpRequest,{}
[2016-05-31 14:54:13,115][DEBUG][com.floragunn.searchguard.auth.BackendRegistry] Try to extract auth creds from http {} basic
[2016-05-31 14:54:13,120][INFO ][com.floragunn.searchguard.auth.BackendRegistry] java.lang.IllegalArgumentException: password must not be null or empty extracting credentials from basic
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to Search Guard
Ok, so I got this working with RC1 using the proxy method. I'm almost there but am a little confused on how you would set up users to have access through kibana. I have nginx passing the correct username and see it being matched via "[2016-06-10 14:51:49,997][DEBUG][com.floragunn.searchguard.configuration.PrivilegesEvaluator] evaluate permissions for User [name=testuser, roles=[]]" But when I then try to restrict sg_public at all kibana barfs on me about not having admin index stuff. I tried just adding the '*' as a user to the kibana4 group which lets me see everything again but with no restrictions by index or type. Is there an example of an anonymous user being set up in the sg_roles.yml that anyone could help me with?
SG
unread,
Jun 26, 2016, 5:31:05 AM6/26/16
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message