Home Explore Help
Sign In
lqb
/
elasticsearch
mirror of https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Read operator privs enabled from Env settings (#98246)

Security.settings incorrectly caches the node startup settings which
does not take into account setting changes that may take place after the
node has started (e.g. "addtionalSettings()" from plugins).

This commit fixes the behaviour for the OperatorPrivileges enabled
setting, until the bug can be fixed more generally
Tim Vernum 2 years ago
parent
9c07f1df6f
commit
2aca985e29
2 changed files with 6 additions and 1 deletions
Split View Show Diff Stats
  1. 5 0
      docs/changelog/98246.yaml
  2. 1 1
      x-pack/plugin/security/src/main/java/org/elasticsearch/xpack/security/Security.java

+ 5 - 0
docs/changelog/98246.yaml
View File 

@@ -0,0 +1,5 @@
 
+pr: 98246
 
+summary: Read operator privs enabled from Env settings
 
+area: Authorization
 
+type: enhancement
 
+issues: []

+ 1 - 1
x-pack/plugin/security/src/main/java/org/elasticsearch/xpack/security/Security.java
View File 

@@ -905,7 +905,7 @@ public class Security extends Plugin
 
         final AuthenticationFailureHandler failureHandler = createAuthenticationFailureHandler(realms, extensionComponents);
 
 
         // operator privileges are enabled either explicitly via the setting or if running serverless
 
-        final boolean operatorPrivilegesEnabled = OPERATOR_PRIVILEGES_ENABLED.get(settings) || DiscoveryNode.isServerless();
 
+        final boolean operatorPrivilegesEnabled = OPERATOR_PRIVILEGES_ENABLED.get(environment.settings()) || DiscoveryNode.isServerless();
 
 
         if (operatorPrivilegesEnabled) {
 
             logger.info("operator privileges are enabled");