Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

KIbana: Issues working with watchers + sensitive data in fields #172258

Open
frodgim opened this issue Nov 30, 2023 · 3 comments
Open

KIbana: Issues working with watchers + sensitive data in fields #172258

frodgim opened this issue Nov 30, 2023 · 3 comments
Labels
bug Fixes for quality problems that affect the customer experience Feature:Watcher Team:Kibana Management Dev Tools, Index Management, Upgrade Assistant, ILM, Ingest Node Pipelines, and more

Comments

@frodgim
Copy link

frodgim commented Nov 30, 2023
edited
Loading

Kibana version:
8.6.2

Elasticsearch version:
8.6.2
Server OS version:

Browser version:

Browser OS version:

Original install method (e.g. download page, yum, from source, etc.):

Describe the bug:

Hi Support,
We have experimented with some watcher's execution failures using secret fields.
We have used webhook actions.
When we reopen the watchers we get fields with some special notation. It's just to warn that this field is not possible to read.
i.e : "Authorization": "::es_redacted::"

To here, I think the current behaviour is reasonable due to security risks. The issue here for me is that if you save again the watcher definition, Kibana won't alert you about a possible misconfiguration and it's probably your watcher's action will not work until the next time it's failing, you detect and solve it

Steps to reproduce:

  1. Create a watcher, create a webhook action, and fill in the Authorization field with your secret
  2. Save the watcher
  3. Open again and then save without any changes

Expected behavior:
At least, To be warned about possible misconfiguration

Screenshots (if relevant):

Errors in browser console (if relevant):

Provide logs and/or server output (if relevant):

Any additional context:
@frodgim frodgim added the bug Fixes for quality problems that affect the customer experience label Nov 30, 2023
@botelastic botelastic bot added the needs-team Issues missing a team label label Nov 30, 2023
@frodgim frodgim changed the title KIbana: Issues working with sensitive data in watchers KIbana: Issues working with watchers + sensitive data in fields Nov 30, 2023
@jsanz jsanz added Feature:Watcher Team:Kibana Management Dev Tools, Index Management, Upgrade Assistant, ILM, Ingest Node Pipelines, and more labels Dec 12, 2023
@elasticmachine
Copy link
Contributor

Pinging @elastic/platform-deployment-management (Team:Deployment Management)

@botelastic botelastic bot removed the needs-team Issues missing a team label label Dec 12, 2023
@alisonelizabeth
Copy link
Contributor

Related to #21010

@alisonelizabeth alisonelizabeth removed the Team:Kibana Management Dev Tools, Index Management, Upgrade Assistant, ILM, Ingest Node Pipelines, and more label Sep 17, 2024
@botelastic botelastic bot added the needs-team Issues missing a team label label Sep 17, 2024
@alisonelizabeth alisonelizabeth added the Team:Kibana Management Dev Tools, Index Management, Upgrade Assistant, ILM, Ingest Node Pipelines, and more label Sep 17, 2024
@elasticmachine
Copy link
Contributor

Pinging @elastic/kibana-management (Team:Kibana Management)

@botelastic botelastic bot removed the needs-team Issues missing a team label label Sep 17, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Fixes for quality problems that affect the customer experience Feature:Watcher Team:Kibana Management Dev Tools, Index Management, Upgrade Assistant, ILM, Ingest Node Pipelines, and more
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@jsanz @frodgim @alisonelizabeth @elasticmachine