daenamnu/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/all-in-one.git synced 2026-05-30 07:20:09 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: enable elasticsearch security to require authentication for all API access

Browse Source 
- Enable xpack.security in Elasticsearch (was explicitly disabled)
- Add ELASTIC_PASSWORD env var so the built-in elastic user gets the password
- Disable HTTP SSL to keep plain HTTP while still enforcing basic auth
- Disable transport SSL (single-node setup)
- Update healthcheck to authenticate with elastic credentials
This commit is contained in:
copilot-swe-agent[bot]
2026-05-27 09:42:02 +00:00
committed by GitHub
parent 2082fb6bbc
commit fd101a88f8
4 changed files with 15 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
php/containers.json
View File

@@ -828,7 +828,10 @@
"discovery.type=single-node",
"http.port=9200",
"xpack.license.self_generated.type=basic",
"xpack.security.enabled=false",
"xpack.security.enabled=true",
"xpack.security.http.ssl.enabled=false",
"xpack.security.transport.ssl.enabled=false",
"ELASTIC_PASSWORD=%FULLTEXTSEARCH_PASSWORD%",
"indices.fielddata.cache.size=20%",
"indices.memory.index_buffer_size=20%",
"thread_pool.write.queue_size=1000",