Uploaded image for project: 'OpenShift Logging'
  1. OpenShift Logging
  2. LOG-2119

Elasticsearch pod is throwing ElasticsearchSecurityException when running delete by query

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Critical Critical
    • Logging 5.4.0
    • None
    • Log Storage
    • None
    • False
    • False
    • NEW
    • VERIFIED
    • Logging (LogExp) - Sprint 213

      When delete by query's prune namespace cronjob is run, elasticsearch throws below exception:

      elasticsearch [2022-01-07T09:48:07,321][INFO ][c.a.o.s.p.PrivilegesEvaluator] [elasticsearch-cdm-3otwcba9-3] No cluster-level perm match for User [name=system:serviceaccount:openshift-logging:elasticsearch, roles=[index-management], requestedTenant=null] Resolved [aliases=[*], indices=[*], allIndices=[*], types=[*], originalRequested=[], remoteIndices=[]] [Action [indices:data/read/scroll/clear]] [RolesChecked [sg_role_curator]] 

elasticsearch [2022-01-07T09:48:07,321][INFO ][c.a.o.s.p.PrivilegesEvaluator] [elasticsearch-cdm-3otwcba9-3] No permissions for [indices:data/read/scroll/clear] elasticsearch [2022-01-07T09:48:07,321][WARN ][o.e.i.r.TransportDeleteByQueryAction] [elasticsearch-cdm-3otwcba9-3] Failed to clear scroll [DnF1ZXJ5VGhlbkZldGNoAwAAAAAAAATFFkVfak5wTmY1UjZXaV9pMWZTQVN1ZGcAAAAAAAAExRZGNnZpeWdDcVE1Mm16ZEwyZjV1c2tBAAAAAAAABMUWcEZFUjBPRldTQldIbFE2STdUOHBPUQ==] elasticsearch org.elasticsearch.ElasticsearchSecurityException: no permissions for [indices:data/read/scroll/clear] and User [name=system:serviceaccount:openshift-logging:elasticsearch, roles=[index-management], requestedTenant=null]

              sasagarw@redhat.com Sashank Agarwal (Inactive)
              sasagarw@redhat.com Sashank Agarwal (Inactive)
              Qiaoling Tang Qiaoling Tang
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: