Run security-dashboards-plugin CI while security-dashboards-plugin is split into 2 separate plugins #7
Conversation
…ng to be able to disable security admin pages Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
This reverts commit 018cc7f.
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
There was a problem hiding this comment.
Hi @cwperks, thanks for putting this together. This is indeed a very interesting PR to review. I can see that this experimental change is designed to support MDS. To help bridge my knowledge gap with the new security frontend experience, I've left some conceptual questions in this round of review.
|
|
||
| - uses: actions/checkout@v2 | ||
| with: | ||
| path: ./OpenSearch-Dashboards/plugins/security-admin-dashboards-plugin |
There was a problem hiding this comment.
Is this the second installation for Security Admin Pages?
|
|
||
| - uses: actions/checkout@v2 | ||
| with: | ||
| path: ${{ steps.determine-plugin-directory.outputs.plugin-directory }} |
There was a problem hiding this comment.
This seems to be the first installation for Session Management Only Mode, is that correct?
| working-directory: OpenSearch-Dashboards | ||
| shell: bash | ||
|
|
||
| - name: Create opensearch_dashboards.json for security admin dashboards plugin |
There was a problem hiding this comment.
I suggest we add a working-directory for this at ./OpenSearch-Dashboards/plugins/security-admin-dashboards-plugin
| - name: Add to opensearch_dashboards.yml config file | ||
| run: | | ||
| echo 'opensearch_security.configuration.admin_pages_enabled: false' >> ./OpenSearch-Dashboards/config/opensearch_dashboards.yml | ||
| echo 'opensearch_security_admin.configuration.session_management_enabled: false' >> ./OpenSearch-Dashboards/config/opensearch_dashboards.yml |
There was a problem hiding this comment.
For my knowledge, I do have some conceptual questions about these flags:
- what are these flags for? (I guess it is for disable/enable the 2 security dashboards we installed, but why we disabled both of them here?)
- Are they enabled by default?
There was a problem hiding this comment.
Notice that the prefixes are different opensearch_security vs opensearch_security_admin.
For one of the plugin installations it disables the Admin pages and only manages the session, including login/logout, changing tenant and viewing user info. For the other plugin, it disables session management. In that mode, the plugin acts like any other dashboard plugin where it displays pages for the user to interact with security. It takes for granted that another plugin manages the session.
Signed-off-by: Craig Perkins <[email protected]>
Signed-off-by: Craig Perkins <[email protected]>
Companion PR: https://github.com/cwperks/OpenSearch-Dashboards/pull/1/files
In this PR, the security-dashboards-plugin is installed twice for cypress testing.