Im also on 2.2.1 trying to setup OpenID but with Gitlab. I’m getting a Json response in the browser with 401 unauthorized. Doesnt matter if I’m logged in to Gitlab or not. We have an integration with Discourse and Grafana working so the Gitlab part should be ok. Does anyone have a working example for Gitlab CE?
dashboard.yml
server.basePath: /opensearch
server.rewriteBasePath: true
server.host: "0.0.0.0"
opensearch.hosts: ["https://localhost:9200"]
opensearch.ssl.verificationMode: none
opensearch.username: "kibanaserver"
opensearch.password: "xyz"
opensearch.requestHeadersWhitelist: [ authorization,securitytenant ]
opensearch_security.multitenancy.enabled: true
opensearch_security.multitenancy.tenants.preferred: ["Private", "Global"]
opensearch_security.readonly_mode.roles: ["kibana_read_only"]
# Use this setting if you are running opensearch-dashboards without https
opensearch_security.cookie.secure: false
# openid config
opensearch_security.auth.type: "openid"
opensearch_security.openid.connect_url: "https://xyz/.well-known/openid-configuration"
opensearch_security.openid.client_id: "xyz"
opensearch_security.openid.client_secret: "xyz"
config
authc:
basic_internal_auth_domain:
description: "Authenticate via HTTP Basic against internal users database"
http_enabled: true
transport_enabled: true
order: 0
http_authenticator:
type: basic
challenge: false
authentication_backend:
type: intern
openid_auth_domain:
http_enabled: true
transport_enabled: true
order: 1
http_authenticator:
type: openid
challenge: false
config:
subject_key: preferred_username
openid_connect_url: https://xyz/.well-known/openid-configuration
authentication_backend:
type: noop
xyz is commented out code
Im testing with the default docker-compose setup 3 node cluster