Skip to content

[DOCS] Add ES security principles #76850

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 12 commits into from
Aug 31, 2021
Merged

[DOCS] Add ES security principles #76850

merged 12 commits into from
Aug 31, 2021

Conversation

@lockewritesdocs
Copy link
Contributor

@lockewritesdocs lockewritesdocs commented Aug 23, 2021
edited
Loading

Extracts some guidance from the existing Scripting and security page to create a top-level set of security principles for Elasticsearch.

Preview link: https://elasticsearch_76850.docs-preview.app.elstc.co/guide/en/elasticsearch/reference/master/es-security-principles.html

Closes #67061

@lockewritesdocs lockewritesdocs added >docs General docs changes :Security/Security Security issues without another label v8.0.0 v7.14.1 v7.15.0 labels Aug 23, 2021
@lockewritesdocs lockewritesdocs self-assigned this Aug 23, 2021
@elasticmachine elasticmachine added Team:Security Meta label for security team Team:Docs Meta label for docs team labels Aug 23, 2021
@elasticmachine
Copy link
Collaborator

elasticmachine commented Aug 23, 2021

Pinging @elastic/es-security (Team:Security)

@elasticmachine
Copy link
Collaborator

elasticmachine commented Aug 23, 2021

Pinging @elastic/es-docs (Team:Docs)

@lockewritesdocs lockewritesdocs mentioned this pull request Aug 23, 2021
Closed
bytebilly
bytebilly reviewed Aug 24, 2021
View reviewed changes
Copy link
Contributor

@bytebilly bytebilly left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@lockewritesdocs thanks for putting this together! I left a few comments.

nik9000
nik9000 reviewed Aug 24, 2021
View reviewed changes
@lockewritesdocs
Copy link
Contributor Author

lockewritesdocs commented Aug 25, 2021

@elasticmachine update branch

nik9000
nik9000 reviewed Aug 25, 2021
View reviewed changes
@martijnvg martijnvg added v7.14.2 and removed v7.14.1 labels Aug 26, 2021
@lockewritesdocs
Copy link
Contributor Author

lockewritesdocs commented Aug 26, 2021

@elasticmachine update branch

@lockewritesdocs
Copy link
Contributor Author

lockewritesdocs commented Aug 30, 2021

@nik9000 and @bytebilly, I incorporated your review feedback. I haven't resolved most of Nik's comments in case either of you wants to dig through them. Let me know if you think additional changes are required or if this PR is good to merge.

nik9000
nik9000 reviewed Aug 30, 2021
View reviewed changes
Copy link
Member

@nik9000 nik9000 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I left a question about adding a link and about changing the intro sentence in another spot. Thanks for iterating on it!

bytebilly
bytebilly requested changes Aug 31, 2021
View reviewed changes
@lockewritesdocs
Copy link
Contributor Author

lockewritesdocs commented Aug 31, 2021

@elasticmachine update branch

bytebilly
bytebilly approved these changes Aug 31, 2021
View reviewed changes
Copy link
Contributor

@bytebilly bytebilly left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

nik9000
nik9000 approved these changes Aug 31, 2021
View reviewed changes
Copy link
Member

@nik9000 nik9000 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍 too. thanks so much for all the iterations!

@lockewritesdocs lockewritesdocs added v7.16.0 auto-backport Automatically create backport pull requests when merged labels Aug 31, 2021
@lockewritesdocs lockewritesdocs merged commit b9ad986 into elastic:master Aug 31, 2021
@lockewritesdocs lockewritesdocs deleted the docs__clarify-exposing-clusters branch August 31, 2021 16:37
@elasticsearchmachine
Copy link
Collaborator

elasticsearchmachine commented Aug 31, 2021

💔 Backport failed

Status Branch Result
7.15 Commit could not be cherrypicked due to conflicts
7.x Commit could not be cherrypicked due to conflicts
7.14 Commit could not be cherrypicked due to conflicts

To backport manually run backport --upstream elastic/elasticsearch --pr 76850

lockewritesdocs pushed a commit to lockewritesdocs/elasticsearch that referenced this pull request Aug 31, 2021
@elasticmachine
[DOCS] Add ES security principles (elastic#76850)
c4aabfc 
* [DOCS] Add ES security principles

* Incorporating review feedback

* More changes from review feedback

* Fix cross-link to Painless guide

* Clarify callout text

* Add information about elasticsearch user

* Minor wording edits

* Consolidate Java Security Manager description, plus other edits

* Clarify not running as root

Co-authored-by: Elastic Machine <[email protected]>
@lockewritesdocs lockewritesdocs mentioned this pull request Aug 31, 2021
Merged
lockewritesdocs pushed a commit that referenced this pull request Sep 1, 2021
@elasticmachine
[DOCS] [7.x] Add ES security principles (#76850) (#77082)
1b0cac2 
* [DOCS] Add ES security principles (#76850)

* [DOCS] Add ES security principles

* Incorporating review feedback

* More changes from review feedback

* Fix cross-link to Painless guide

* Clarify callout text

* Add information about elasticsearch user

* Minor wording edits

* Consolidate Java Security Manager description, plus other edits

* Clarify not running as root

Co-authored-by: Elastic Machine <[email protected]>

* Remove links specific to 8.0

Co-authored-by: Elastic Machine <[email protected]>
@lockewritesdocs lockewritesdocs mentioned this pull request Sep 1, 2021
Merged
lockewritesdocs pushed a commit to lockewritesdocs/elasticsearch that referenced this pull request Sep 1, 2021
@elasticmachine
[DOCS] [7.x] Add ES security principles (elastic#76850) (elastic#77082)
1f65b51 
* [DOCS] Add ES security principles (elastic#76850)

* [DOCS] Add ES security principles

* Incorporating review feedback

* More changes from review feedback

* Fix cross-link to Painless guide

* Clarify callout text

* Add information about elasticsearch user

* Minor wording edits

* Consolidate Java Security Manager description, plus other edits

* Clarify not running as root

Co-authored-by: Elastic Machine <[email protected]>

* Remove links specific to 8.0

Co-authored-by: Elastic Machine <[email protected]>
lockewritesdocs pushed a commit to lockewritesdocs/elasticsearch that referenced this pull request Sep 1, 2021
@elasticmachine
[DOCS] [7.x] Add ES security principles (elastic#76850) (elastic#77082)
4285216 
* [DOCS] Add ES security principles (elastic#76850)

* [DOCS] Add ES security principles

* Incorporating review feedback

* More changes from review feedback

* Fix cross-link to Painless guide

* Clarify callout text

* Add information about elasticsearch user

* Minor wording edits

* Consolidate Java Security Manager description, plus other edits

* Clarify not running as root

Co-authored-by: Elastic Machine <[email protected]>

* Remove links specific to 8.0

Co-authored-by: Elastic Machine <[email protected]>
@lockewritesdocs lockewritesdocs mentioned this pull request Sep 1, 2021
Merged
lockewritesdocs pushed a commit that referenced this pull request Sep 1, 2021
@elasticmachine
[DOCS] [7.x] Add ES security principles (#76850) (#77082) (#77142)
090eb1b 
* [DOCS] Add ES security principles (#76850)

* [DOCS] Add ES security principles

* Incorporating review feedback

* More changes from review feedback

* Fix cross-link to Painless guide

* Clarify callout text

* Add information about elasticsearch user

* Minor wording edits

* Consolidate Java Security Manager description, plus other edits

* Clarify not running as root

Co-authored-by: Elastic Machine <[email protected]>

* Remove links specific to 8.0

Co-authored-by: Elastic Machine <[email protected]>

Co-authored-by: Elastic Machine <[email protected]>
lockewritesdocs pushed a commit that referenced this pull request Sep 1, 2021
@elasticmachine
[DOCS] [7.x] Add ES security principles (#76850) (#77082) (#77143)
ed5f854 
* [DOCS] Add ES security principles (#76850)

* [DOCS] Add ES security principles

* Incorporating review feedback

* More changes from review feedback

* Fix cross-link to Painless guide

* Clarify callout text

* Add information about elasticsearch user

* Minor wording edits

* Consolidate Java Security Manager description, plus other edits

* Clarify not running as root

Co-authored-by: Elastic Machine <[email protected]>

* Remove links specific to 8.0

Co-authored-by: Elastic Machine <[email protected]>

Co-authored-by: Elastic Machine <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nik9000 nik9000 nik9000 approved these changes

@bytebilly bytebilly bytebilly approved these changes

@tvernum tvernum Awaiting requested review from tvernum

@DaveCTurner DaveCTurner Awaiting requested review from DaveCTurner

Assignees

@lockewritesdocs lockewritesdocs

Labels

auto-backport Automatically create backport pull requests when merged >docs General docs changes :Security/Security Security issues without another label Team:Docs Meta label for docs team Team:Security Meta label for security team v7.14.2 v7.15.0 v7.16.0 v8.0.0-alpha2

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Clarify docs on exposing Elasticsearch to the internet

7 participants

@lockewritesdocs @elasticmachine @elasticsearchmachine @nik9000 @bytebilly @martijnvg @jakelandis