How to create custom plugin for LDAP in elasticsearch

Asked Mar 24 '16 at 06:54

Active Mar 24 '16 at 06:54

Viewed 209 times

Tools used : 1. Elasticsearch 2.1 with Shield 2.1 2. DgLux as a front end report generation tool 3. Company LDAP to authenticate user against groups

I'm trying to create a custom plugin which should use LDAP only for authorization.

Authentication is already happening via a third party LDAP utility to login into the system.

Every request that goes from DgLux to Elasticsearch will be authenticated and authorized to make sure that the user can perform specific task on the indices.

My requirement is that request will only have user in the header and shield shouldn't try to authenticate the request, only authorization should happen.

How can I built that plugin?

asked Mar 24 '16 at 06:54

Ravi Yadav

Why not simply using [Shield's LDAP connector](https://www.elastic.co/guide/en/shield/current/ldap.html)? – Val Mar 24 '16 at 07:27
Thanks for the response Val ! If i use default LDAP from shield then it requires the username and password in every request to elasticsearch and the problem is we have only username in the rest request header but not the password. – Ravi Yadav Mar 24 '16 at 09:23

How to create custom plugin for LDAP in elasticsearch

0 Answers0