esFrontLine does not whitelist allowed indexes

RESOLVED FIXED

Status

Testing
General
RESOLVED FIXED
4 years ago
4 years ago

People

(Reporter: st3fan, Assigned: ekyle)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

4 years ago
On the test instance I was able to query indexes like org_chart131126_145625, reviews131125_034647 and telemetry_agg_valid_201302.

It might be better to whitelist specific index names that are to be made publicly available.

If the public bugs index is the only index that will be hosted in ES then that may not be needed. Although I think it would be a good safeguard for accidental mistakes.
You need to log in before you can comment on or make changes to this bug.