Home Explore Help
Sign In
lqb
/
elasticsearch
mirror of https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Make credentials mandatory when launching xpack/migrate (#36197)

Made credentials mandatory for xpack migrate tool. 
Closes #29847.

The x-pack user and roles APIs aren't available unless security is enabled, so the tool should always be called with the -u and -p options specified.
Tim Vernum 6 years ago
parent
e825ad5dce
commit
3272538701
2 changed files with 13 additions and 2 deletions
Split View Show Diff Stats
  1. 2 2
      x-pack/plugin/security/src/main/java/org/elasticsearch/xpack/security/authc/esnative/ESNativeRealmMigrateTool.java
  2. 11 0
      x-pack/plugin/security/src/test/java/org/elasticsearch/xpack/security/authc/esnative/ESNativeMigrateToolTests.java

+ 2 - 2
x-pack/plugin/security/src/main/java/org/elasticsearch/xpack/security/authc/esnative/ESNativeRealmMigrateTool.java
View File 

@@ -104,10 +104,10 @@ public class ESNativeRealmMigrateTool extends LoggingAwareMultiCommand {
 
             super("Migrates users or roles from file to native realm");
 
             this.username = parser.acceptsAll(Arrays.asList("u", "username"),
 
                     "User used to authenticate with Elasticsearch")
 
-                    .withRequiredArg();
 
+                    .withRequiredArg().required();
 
             this.password = parser.acceptsAll(Arrays.asList("p", "password"),
 
                     "Password used to authenticate with Elasticsearch")
 
-                    .withRequiredArg();
 
+                    .withRequiredArg().required();
 
             this.url = parser.acceptsAll(Arrays.asList("U", "url"),
 
                     "URL of Elasticsearch host")
 
                     .withRequiredArg();

+ 11 - 0
x-pack/plugin/security/src/test/java/org/elasticsearch/xpack/security/authc/esnative/ESNativeMigrateToolTests.java
View File 

@@ -5,6 +5,7 @@
 
  */
 
 package org.elasticsearch.xpack.security.authc.esnative;
 
 
+import joptsimple.OptionException;
 
 import joptsimple.OptionParser;
 
 import joptsimple.OptionSet;
 
 import org.elasticsearch.cli.MockTerminal;
 
@@ -24,6 +25,7 @@ import java.util.Arrays;
 
 import java.util.HashSet;
 
 import java.util.Set;
 
 
+import static org.hamcrest.Matchers.containsString;
 
 import static org.hamcrest.Matchers.is;
 
 
 /**
 
@@ -155,4 +157,13 @@ public class ESNativeMigrateToolTests extends NativeRealmIntegTestCase {
 
             assertThat("expected list to contain: " + r, roles.contains(r), is(true));
 
         }
 
     }
 
+
 
+    public void testMissingPasswordParameter() {
 
+        ESNativeRealmMigrateTool.MigrateUserOrRoles muor = new ESNativeRealmMigrateTool.MigrateUserOrRoles();
 
+
 
+        final OptionException ex = expectThrows(OptionException.class,
 
+            () -> muor.getParser().parse("-u", "elastic", "-U", "http://localhost:9200"));
 
+
 
+        assertThat(ex.getMessage(), containsString("password"));
 
+    }
 
 }