[BENCHMARK] Pass OS Cluster password securely. #4533
Assignees
Labels
enhancement
New Enhancement
Comments
rishabh6788
added
enhancement
rishabh6788
changed the title
github-project-automation
bot
moved this to Backlog
in OpenSearch Engineering Effectiveness
Divyaasm
moved this from In Progress
to In review
in OpenSearch Engineering Effectiveness
|
closed via #4621 |
github-project-automation
bot
moved this from In review
to Done
in OpenSearch Engineering Effectiveness
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is your feature request related to a problem? Please describe
The nightly benchmark platform currently deploys a secure and non-secure opensearch cluster to run benchmarks on. Before Os-2.12.0 the security plugin provided
admin:admincredentials as part of default configuration and we used the same for setting up the secure test-cluster. Starting OS-2.12.0 the security plugin has mandated that a strong password is supplied by the user. For now we have hardcoded that strong password in the workflow code and running nightly benchmarks. Since the test-clusters are created in a VPC and are only accessible inside the VPC this does not pose any threat but moving forward where we are planning to open our benchmark platform to accept remote cluster endpoints to run benchmarks it becomes necessary to allow users to provide their cluster passwords without leaking it publicly.Describe the solution you'd like
The user should be able to pass their cluster password securely while submitting benchmark runs using the public benchmark platform against their remote cluster.
Describe alternatives you've considered
No response
Additional context
No response
The text was updated successfully, but these errors were encountered: