logstash-output-elasticsearch 2.5.0-java → 2.5.1-java

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 94080174a41d46422a7f94b0e9354554d3e0d66a
-  data.tar.gz: bddb86d2a5bbbae75734c41610588c3cf5c04f71
+  metadata.gz: e2be6702ec45ea049c714fc3d3481405c8d9d4b5
+  data.tar.gz: 376cb1122b3bc91c2747813dee512cd89bef4bcd
 SHA512:
-  metadata.gz: 4d59bc4d44c2b1918519e286efb995805abd63dd8d411ae87b82551750182b743ee56ed453d557e12769c21a3535496aa02d79ff77580ba9508499914edc61e2
-  data.tar.gz: fdba23ed47b9414ca87d2d7bd75a3c07c440fce5d86c49adcdb4be1a95884266e908f0b73ef55a1c895947714cd2fc19ec6bf0c8887274b9dc9ffab5c51190cc
+  metadata.gz: f06e6bc71c5faa1ba4296231e0c2f555c4c7caf73031a09a776ec1ff17a127afeaa7967396a41ecbb2ecbf9fd939858fcbd042855d0b72c4e2cffb5edd9f9f63
+  data.tar.gz: c2c403a0690b04aa328eb005312cc1d69d43bc50585e5ef6a0900e0258a8eafa59a7c2c475048e7b15077d5c3982e225bbcb3b6371456cc951b7ae6f1f736ade

data/CHANGELOG.md

@@ -1,3 +1,6 @@
+## 2.5.1
+ - Fix bug where SSL would sometimes not be enabled
+
 ## 2.5.0
  - Host settings now are more robust to bad input
  - Host settings can now take full URLs

data/lib/logstash/outputs/elasticsearch/http_client.rb

@@ -105,7 +105,8 @@ module LogStash; module Outputs; class ElasticSearch;
       client_settings = options[:client_settings] || {}
       timeout = options[:timeout] || 0
 
-      urls = hosts.map {|host| host_to_url(host, client_settings[:ssl], client_settings[:path])}
+      host_ssl_opt = client_settings[:ssl].nil? ? nil : client_settings[:ssl][:enabled]
+      urls = hosts.map {|host| host_to_url(host, host_ssl_opt, client_settings[:path])}
 
       @client_options = {
         :hosts => urls,
@@ -137,8 +138,10 @@ module LogStash; module Outputs; class ElasticSearch;
                           "https"
                         when false
                           "http"
-                        else
+                        when nil
                           nil
+                        else
+                          raise ArgumentError, "Unexpected SSL value!"
                         end
 
       # Ensure path starts with a /

data/lib/logstash/outputs/elasticsearch/http_client_builder.rb

@@ -59,7 +59,8 @@ module LogStash; module Outputs; class ElasticSearch;
     end
 
     def self.setup_ssl(logger, params)
-      return {} unless params["ssl"]
+      return {} if params["ssl"].nil?
+      return {:ssl => {:enabled => false}} if params["ssl"] == false
 
       cacert, truststore, truststore_password, keystore, keystore_password =
         params.values_at('cacert', 'truststore', 'truststore_password', 'keystore', 'keystore_password')
@@ -68,7 +69,7 @@ module LogStash; module Outputs; class ElasticSearch;
         raise(LogStash::ConfigurationError, "Use either \"cacert\" or \"truststore\" when configuring the CA certificate") if truststore
       end
 
-      ssl_options = {}
+      ssl_options = {:enabled => true}
 
       if cacert
         ssl_options[:ca_file] = cacert

data/logstash-output-elasticsearch.gemspec

@@ -1,7 +1,7 @@
 Gem::Specification.new do |s|
 
   s.name            = 'logstash-output-elasticsearch'
-  s.version         = '2.5.0'
+  s.version         = '2.5.1'
   s.licenses        = ['apache-2.0']
   s.summary         = "Logstash Output to Elasticsearch"
   s.description     = "Output events to elasticsearch"

data/spec/unit/outputs/elasticsearch/http_client_spec.rb

@@ -58,6 +58,10 @@ describe LogStash::Outputs::ElasticSearch::HttpClient do
         it "should handle an ssl url correctly when SSL is nil" do
           expect(subject.send(:host_to_url, https_hostname_port, nil)).to eql(https_hostname_port)
         end
+
+        it "should raise an exception if an unexpected value is passed in" do
+          expect { subject.send(:host_to_url, https_hostname_port, {})}.to raise_error(ArgumentError)
+        end
       end
 
       describe "path" do

data/spec/unit/outputs/elasticsearch_spec.rb

@@ -175,4 +175,29 @@ describe "outputs/elasticsearch" do
     end
   end
 
+  describe "SSL end to end" do
+    shared_examples("an encrypted client connection") do
+      it "should enable SSL in manticore" do
+        expect(eso.client.client_options[:hosts].map {|h| URI.parse(h).scheme}.uniq).to eql(['https'])
+      end
+    end
+
+    let(:eso) {LogStash::Outputs::ElasticSearch.new(options)}
+    subject(:manticore) { eso.client.client}
+
+    before do
+      eso.register
+    end
+
+    context "With the 'ssl' option" do
+      let(:options) { {"ssl" => true}}
+
+      include_examples("an encrypted client connection")
+    end
+
+    context "With an https host" do
+      let(:options) { {"hosts" => "https://localhost"} }
+      include_examples("an encrypted client connection")
+    end
+  end
 end

data/spec/unit/outputs/elasticsearch_ssl_spec.rb

@@ -15,7 +15,7 @@ describe "SSL option" do
 
     it "should pass the flag to the ES client" do
       expect(::Elasticsearch::Client).to receive(:new) do |args|
-        expect(args[:ssl]).to eq(:verify => false)
+        expect(args[:ssl]).to eq(:enabled => true, :verify => false)
       end
       subject.register
     end
@@ -44,7 +44,6 @@ describe "SSL option" do
       next LogStash::Outputs::ElasticSearch.new(settings)
     end
 
-
     it "should pass the keystore parameters to the ES client" do
       expect(::Elasticsearch::Client).to receive(:new) do |args|
         expect(args[:ssl]).to include(:keystore => keystore_path, :keystore_password => "test")

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: logstash-output-elasticsearch
 version: !ruby/object:Gem::Version
-  version: 2.5.0
+  version: 2.5.1
 platform: java
 authors:
 - Elastic
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-02-10 00:00:00.000000000 Z
+date: 2016-02-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: concurrent-ruby