Major Description
Elasticsearch audit IndexRequest validation is failing due to empty (i.e empty string) type.
Elasticsearch validation code:
2020-07-08 22:55:24,740 ERROR org.apache.ranger.audit.provider.BaseAuditHandler: Error sending message to ElasticSearch
org.elasticsearch.action.ActionRequestValidationException: Validation Failed: 1: type is missing;
at org.elasticsearch.action.bulk.BulkRequest.validate(BulkRequest.java:393)
at org.elasticsearch.client.RestHighLevelClient.performRequest(RestHighLevelClient.java:1480)
at org.elasticsearch.client.RestHighLevelClient.performRequestAndParseEntity(RestHighLevelClient.java:1454)
at org.elasticsearch.client.RestHighLevelClient.bulk(RestHighLevelClient.java:497)
at org.apache.ranger.audit.destination.ElasticSearchAuditDestination.log(ElasticSearchAuditDestination.java:125)
at org.apache.ranger.audit.queue.AuditBatchQueue.runLogAudit(AuditBatchQueue.java:309)
at org.apache.ranger.audit.queue.AuditBatchQueue.run(AuditBatchQueue.java:215)
at java.lang.Thread.run(Thread.java:748)
2020-07-08 22:55:24,740 WARN org.apache.ranger.audit.provider.BaseAuditHandler: failed to log audit event:
Elasticsearch version:
Attachments
Attachments
Issue Links
- links to
