From f553a8e27aaae8067e0d9f7f0a7d73abf802a6f1 Mon Sep 17 00:00:00 2001
From: Mike Reeves <mike.reeves@securityonionsolutions.com>
Date: Tue, 11 Aug 2020 14:40:34 -0400
Subject: [PATCH] anon user hack

---
 salt/elasticsearch/files/elasticsearch.yml | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/salt/elasticsearch/files/elasticsearch.yml b/salt/elasticsearch/files/elasticsearch.yml
index 625d8c8d9..54b1d9a94 100644
--- a/salt/elasticsearch/files/elasticsearch.yml
+++ b/salt/elasticsearch/files/elasticsearch.yml
@@ -24,7 +24,7 @@ cluster.routing.allocation.disk.watermark.low: 95%
 cluster.routing.allocation.disk.watermark.high: 98%
 cluster.routing.allocation.disk.watermark.flood_stage: 98%
 {%- if FEATURES is sameas true %}
-xpack.security.enabled: false
+xpack.security.enabled: true
 xpack.security.http.ssl.enabled: false
 xpack.security.transport.ssl.enabled: true
 xpack.security.http.ssl.key: /usr/share/elasticsearch/config/elasticsearch.key
@@ -33,6 +33,11 @@ xpack.security.http.ssl.certificate_authorities: /usr/share/elasticsearch/config
 xpack.security.transport.ssl.key: /usr/share/elasticsearch/config/elasticsearch.key
 xpack.security.transport.ssl.certificate: /usr/share/elasticsearch/config/elasticsearch.crt
 xpack.security.transport.ssl.certificate_authorities: /usr/share/elasticsearch/config/ca.crt
+xpack.security.authc:
+  anonymous:
+    username: anonymous_user 
+    roles: elasticsearch 
+    authz_exception: true 
 {%- endif %}
 node.attr.box_type: {{ NODE_ROUTE_TYPE }}
 node.name: {{ ESCLUSTERNAME }}