Search Guard v10
Release Date: January 09, 2017
- Add missing auditlog hooks and configuration properties
- Fix possible class cast exception when logging on TRACE level
- Fix XFF Proxies - documentation, default values and implementation inconsistention #255
- Fix Bug in XFFResolver.java - bad type of request #256
- Fix Kerberos configuration examples
- Add username_attribute for http client cert authenticator
- Mark http host authenticator deprecated. Host based authentication is supported via roles_mapping.yml (and was always), #214
- Resolve index patterns correctly for DLS and FLS, changed default indices options to lenientExpandOpen, #266
- Add
--diagnose, --delete-config-index and --enable-shard-allocation
options to sgadmin - Fix duplicated authorizers (clear authorizers on change)
- Fix ?pretty=true does not work #259
- Fix default permissions in templates
- Kibana RO users need cluster indices:data/read* permissions #262
- Kibana needs CLUSTER_MONITOR permission to #263
- Logstash needs cluster:monitor/main permissions #267
- Fix a problem with
authinfo
endpoint if an exception were raised (builder object was left in a dirty state) - Add missing searchguard.config_index_name property
- Add support for webhooks as auditlog destination