Home Explore Help
Sign In
lqb
/
elasticsearch
mirror of https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 729fe26c5a
Branches Tags
elasticsearch
/
x-pack
/
docs
/
en
/
security
/
ccs-clients-integrations
/
http.asciidoc

http.asciidoc 2.2 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. [[http-clients]]
    2. 

  2. === HTTP/REST clients and security
    3. 

  3. 

  4. The {es} {security-features} work with standard HTTP
    5. 

  5. https://en.wikipedia.org/wiki/Basic_access_authentication[basic authentication]
    6. 

  6. headers to authenticate users. Since Elasticsearch is stateless, this header must
    7. 

  7. be sent with every request:
    8. 

  8. 

  9. [source,shell]
    10. 

  10. --------------------------------------------------
    11. 

  11. Authorization: Basic <TOKEN> <1>
    12. 

  12. --------------------------------------------------
    13. 

  13. <1> The `<TOKEN>` is computed as `base64(USERNAME:PASSWORD)`
    14. 

  14. 

  15. [float]
    16. 

  16. ==== Client examples
    17. 

  17. 

  18. This example uses `curl` without basic auth to create an index:
    19. 

  19. 

  20. [source,shell]
    21. 

  21. -------------------------------------------------------------------------------
    22. 

  22. curl -XPUT 'localhost:9200/idx'
    23. 

  23. -------------------------------------------------------------------------------
    24. 

  24. 

  25. [source,js]
    26. 

  26. -------------------------------------------------------------------------------
    27. 

  27. {
    28. 

  28.   "error":  "AuthenticationException[Missing authentication token]",
    29. 

  29.   "status": 401
    30. 

  30. }
    31. 

  31. -------------------------------------------------------------------------------
    32. 

  32. 

  33. Since no user is associated with the request above, an authentication error is
    34. 

  34. returned. Now we'll use `curl` with basic auth to create an index as the
    35. 

  35. `rdeniro` user:
    36. 

  36. 

  37. [source,shell]
    38. 

  38. ---------------------------------------------------------
    39. 

  39. curl --user rdeniro:taxidriver -XPUT 'localhost:9200/idx'
    40. 

  40. ---------------------------------------------------------
    41. 

  41. 

  42. [source,js]
    43. 

  43. ---------------------------------------------------------
    44. 

  44. {
    45. 

  45.   "acknowledged": true
    46. 

  46. }
    47. 

  47. ---------------------------------------------------------
    48. 

  48. 

  49. [float]
    50. 

  50. ==== Client libraries over HTTP
    51. 

  51. 

  52. For more information about using {security-features} with the language
    53. 

  53. specific clients, refer to:
    54. 

  54. 

  55. * {java-rest}/_basic_authentication.html[Java]
    56. 

  56. * {jsclient-current}/auth-reference.html[JavaScript]
    57. 

  57. * https://www.elastic.co/guide/en/elasticsearch/client/net-api/master/configuration-options.html[.NET]
    58. 

  58. * https://metacpan.org/pod/Search::Elasticsearch::Cxn::HTTPTiny#CONFIGURATION[Perl]
    59. 

  59. * https://www.elastic.co/guide/en/elasticsearch/client/php-api/master/security.html[PHP]
    60. 

  60. * https://elasticsearch-py.readthedocs.io/en/master/#ssl-and-authentication[Python]
    61. 

  61. * https://github.com/elasticsearch/elasticsearch-ruby/tree/master/elasticsearch-transport#authentication[Ruby]
    62.