I know that the default URL for Elasticsearch on Bitbucket is http://localhost:7992.
Is there a way to wrap Elasticsearch in SSL, so that the URL becomes https://localhost:7992, so all traffic to and from Elasticsearch is encrypted?
Version: Bitbucket 5.5.0
Hi,
While ensuring SSL is on is generally a good rule of thumb, just wondering if this is a necessity given your Bitbucket and Elasticsearch are running on the same node and if someone is logged in to your server to get access to the lo interface to intercept the traffic, you've got a bigger issue anyway.
Unsure if the bundled elasticsearch would allow it, but https://www.elastic.co/guide/en/shield/current/ssl-tls.html outlines the general steps to SSL enable ElasticSearch. This seems to require Elastic Security (formerly Shield) is required and that is a paid subscription product https://www.elastic.co/subscriptions.
If you're deployed to AWS, you might consider using Elastic Cloud but deployed in AWS (https://www.elastic.co/cloud/as-a-service). Their pricing includes the AWS resources and the full elastic X-pack (includes security) and comes with SSL out of the box.
CCM
Join the discussion on interview best practices and common pitfalls. Share your experiences and learn from others in the Atlassian Community.
Share you experiences!Online forums and learning are now in one easy-to-use experience.
By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.