Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
[BUG] FATAL ValidationError: child "plugins" fails because ["security" is not allowed]
See original GitHub issueDescribe the bug
Cannot configure OIDC auth for opensearch_dashboard as written at https://opensearch.org/docs/security-plugin/configuration/openid-connect/
Each line starts with plugins.security throwing error:
{"type":"log","@timestamp":"2021-07-30T13:51:42Z","tags":["fatal","root"],"pid":1,"message":"{ ValidationError: child \"plugins\" fails because [\"security\" is not allowed]\n at Object.exports.process (/usr/share/opensearch-dashboards/node_modules/joi/lib/errors.js:196:19)\n at internals.Object._validateWithOptions (/usr/share/opensearch-dashboards/node_modules/joi/lib/types/any/index.js:675:31)\n at module.exports.internals.Any.root.validate (/usr/share/opensearch-dashboards/node_modules/joi/lib/index.js:146:23)\n at Config._commit (/usr/share/opensearch-dashboards/src/legacy/server/config/config.js:146:34)\n at Config.set (/usr/share/opensearch-dashboards/src/legacy/server/config/config.js:117:10)\n at Config.extendSchema (/usr/share/opensearch-dashboards/src/legacy/server/config/config.js:89:10)\n at _lodash.default.each.child (/usr/share/opensearch-dashboards/src/legacy/server/config/config.js:79:14)\n at arrayEach (/usr/share/opensearch-dashboards/node_modules/lodash/lodash.js:530:11)\n at Function.forEach (/usr/share/opensearch-dashboards/node_modules/lodash/lodash.js:9410:14)\n at Config.extendSchema (/usr/share/opensearch-dashboards/src/legacy/server/config/config.js:78:30)\n at new Config (/usr/share/opensearch-dashboards/src/legacy/server/config/config.js:69:10)\n at Function.withDefaultSchema (/usr/share/opensearch-dashboards/src/legacy/server/config/config.js:63:12)\n at LegacyService.setupLegacyConfig (/usr/share/opensearch-dashboards/src/core/server/legacy/legacy_service.js:84:43) name: 'ValidationError' }"}
FATAL ValidationError: child "plugins" fails because ["security" is not allowed]
To Reproduce
Install opensearch, install opensearch-dashboards.
Enable openid_auth_domain in opensearch, reload config with securityadmin.sh
configure opensearch-dashboards to use, eg
plugins.security.auth.type: "openid"
Expected behavior OIDC auth to work
OpenSearch Version docker opensearchproject/opensearch:1.0.0
Dashboards Version docker opensearchproject/opensearch-dashboards:1.0.0
Plugins
[opensearch-dashboards@5be9c9ca0417 ~]$ bin/opensearch-dashboards-plugin list
alertingDashboards@1.0.0.0
anomalyDetectionDashboards@1.0.0.0
ganttChartDashboards@1.0.0.0
indexManagementDashboards@1.0.0.0-rc1
notebooksDashboards@1.0.0.0
queryWorkbenchDashboards@1.0.0.0
reportsDashboards@1.0.0.0
securityDashboards@1.0.0.0
traceAnalyticsDashboards@1.0.0.0
Screenshots NA
Host/Environment (please complete the following information):
- OS: 18.04.5 LTS (Bionic Beaver)
- Docker: Server Version: 19.03.14
Issue Analytics
- State:
- Created 2 years ago
- Reactions:4
- Comments:5 (2 by maintainers)
Top Results From Across the Web
Unable to open Kibana 5.6.15 GUI - Elastic Discuss
I have "xpack.security.audit.enabled" set to false explicitly in kibana.yml but still not able to recover from this issue.
Read more >Kibana, Searchguard & X-Pack Mointoring - Search Guard
Based on the error logs , I can understand that ssl is not allowed. So I guess we need to make some changes...
Read more >Troubleshoot OpenID Connect - Open Distro for Elasticsearch
“ValidationError: child 'opendistro_security' fails” ... This indicates that one or more of the Kibana configuration settings are missing. Check kibana.yml and ...
Read more >Cookie length should be less than or equal to 4096
Hello! I faced very critical issue. Many users that have more than 30-40 groups in LDAP can't access to Kibana due to oversize...
Read more >Web service error codes (Microsoft Dataverse) - Power Apps
Message: Attribute {0} of Entity {1} cannot be processed because the attribute data type {2} is not supported in your organization. 0x80044335 - ......
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
yep https://github.com/opensearch-project/security-dashboards-plugin/issues/806 opened, thanks so much @kavilla
@kafonek, sorry about your struggles!
I see there are a few open issues in the security plugin related to open id: https://github.com/opensearch-project/security-dashboards-plugin/issues?q=is%3Aissue+is%3Aopen+openid. I see a closed issue that is similar to what you are seeing to which was solved with: https://github.com/opensearch-project/security-dashboards-plugin/issues/672#issuecomment-781507352.
As the original issue was related to the security plugin and your follow-up issue is seeing errors due to it as well. Would you be able to open an issue in the security plugin repo [here]. I would still open a new issue if there is any confusion related to getting the configuration of the plugin correct even if you scanned the closed issues and resolved it that way.
Let me know if you would like me to create it for you to help reduce your struggles.