Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Extensions] Core-side API to get auth token for service account #2646

Closed
Tracked by #2596
, #2944
...
stephen-crawford opened this issue Apr 4, 2023 · 1 comment
Closed
Tracked by #2596
, #2944
...

[Extensions] Core-side API to get auth token for service account #2646

stephen-crawford opened this issue Apr 4, 2023 · 1 comment
Assignees
@stephen-crawford
Labels
enhancement New feature or request triaged Issues labeled as 'Triaged' have been reviewed and are deemed actionable.

Comments

@stephen-crawford
Copy link
Contributor

To implement service accounts, it needs to be possible to fetch the corresponding auth token from the Security Plugin. This means that core should be able to use a transport API to request the auth token corresponding to the service account. The auth token will contain information relating to the account's roles and identity.

The completion of this issue will be a PR that adds a transport API to core which can connect to the Security plugin and request an auth token for a given service account. The generation of the token and the plugin-side handling of the token are outside the scope of this issue. This issue is best completed as a follow-up to #2611, which adds the base Security Plugin side of the API functionality.
@stephen-crawford stephen-crawford added enhancement New feature or request untriaged Require the attention of the repository maintainers and may need to be prioritized triaged Issues labeled as 'Triaged' have been reviewed and are deemed actionable. and removed untriaged Require the attention of the repository maintainers and may need to be prioritized labels Apr 4, 2023
@github-actions github-actions bot added the untriaged Require the attention of the repository maintainers and may need to be prioritized label Apr 4, 2023
@stephen-crawford stephen-crawford mentioned this issue Apr 4, 2023
Closed
47 tasks
@stephen-crawford stephen-crawford removed the untriaged Require the attention of the repository maintainers and may need to be prioritized label Apr 5, 2023
@stephen-crawford stephen-crawford self-assigned this May 15, 2023
@stephen-crawford stephen-crawford mentioned this issue May 16, 2023
Merged
6 tasks
@stephen-crawford stephen-crawford moved this from Todo to Awaiting Review in Security for Extensions May 16, 2023
@stephen-crawford
Copy link
Contributor Author

This is being addressed in opensearch-project/OpenSearch#7452 since we can implement the interface in the Security Plugin and then use it to fetch the tokens for the extensions.

@peternied peternied mentioned this issue Aug 16, 2023
Closed
14 tasks
@github-project-automation github-project-automation bot moved this from Awaiting Review to Done in Security for Extensions Aug 21, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@stephen-crawford stephen-crawford

Labels
enhancement New feature or request triaged Issues labeled as 'Triaged' have been reviewed and are deemed actionable.
Projects
Security for Extensions
Status: Done
Milestone
No milestone
Development

No branches or pull requests
2 participants
@davidlago @stephen-crawford