Home Explore Help
Register Sign In
lqb
/
elasticsearch
mirror of https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

[DOCS] Note that User Cluster Metadata is not private (#34156)

As user-defined cluster metadata is accessible to anyone with access to
get the cluster settings, stored in the logs, and likely to be tracked
by monitoring solutions, it is useful to clarify in the documentation
that it should not be used to store secret information.
Gordon Brown 7 years ago
parent
f12e0a8398
commit
dd3fe92673
1 changed files with 6 additions and 0 deletions
Split View Show Diff Stats
  1. 6 0
      docs/reference/modules/cluster/misc.asciidoc

+ 6 - 0
docs/reference/modules/cluster/misc.asciidoc
View File 

@@ -43,6 +43,12 @@ PUT /_cluster/settings
 
 -------------------------------
 
 // CONSOLE
 
 
+IMPORTANT: User-defined cluster metadata is not intended to store sensitive or
 
+confidential information. Any information stored in user-defined cluster
 
+metadata will be viewable by anyone with access to the
 
+<<cluster-get-settings,Cluster Get Settings>> API, and is recorded in the
 
+{es} logs.
 
+
 
 [[cluster-max-tombstones]]
 
 ==== Index Tombstones