elastic/kibana

Better error handling when SAML realm is not available under current license

Open

#60,337 opened on Mar 16, 2020

View on GitHub
 (2 comments) (1 reaction) (0 assignees)TypeScript (8,021 forks)batch import
Feature:Security/AuthenticationTeam:Securityenhancementgood first issue

Repository metrics

Stars
 (19,065 stars)
PR merge metrics
 (Avg merge 1d 16h) (999 merged PRs in 30d)

Description

Currently if the ES license does not allow for SAML realm, Kibana simply throws the error below when launching the base URL for Kibana:

{"statusCode":401,"error":"Unauthorized","message":"Unauthorized"}

The ES logs clearly shows the underlying issue:

[2020-03-16T23:28:12,135][INFO ][o.e.x.s.r.a.s.SamlBaseRestHandler] [node-1] The 'saml' realm is not available under the current license

It will be nice for Kibana to detect this condition and report an intuitive error message to the UI.

Contributor guide