Elasticsearch Version
8.x and up
Installed Plugins
No response
Java Version
bundled
OS Version
n/a
Problem Description
Creating this as a placeholder. I plan to fill in more details.
There are scenarios in which authorization can be called twice for a single request (by SecurityActionFilter and SecurityTransportFilter under certain configurations). This leads to multiple calls to index resolution logic. This is generally not a problem functionally, however it can lead to duplicate index resolution work. We should investigate under what exact conditions this occurs and consider avoid duplicate authorization calls.
Steps to Reproduce
For me to fill in.
Logs (if relevant)
No response
Elasticsearch Version
8.x and up
Installed Plugins
No response
Java Version
bundled
OS Version
n/a
Problem Description
Creating this as a placeholder. I plan to fill in more details.
There are scenarios in which authorization can be called twice for a single request (by
SecurityActionFilterandSecurityTransportFilterunder certain configurations). This leads to multiple calls to index resolution logic. This is generally not a problem functionally, however it can lead to duplicate index resolution work. We should investigate under what exact conditions this occurs and consider avoid duplicate authorization calls.Steps to Reproduce
For me to fill in.
Logs (if relevant)
No response