Optimize 2.0

Options

Edit on Github

User Access Management

In Optimize you have several possibilities to define users who can access/log in to Optimize:

Define A Default User

The simplest option to create an Optimize user is by specifying a user name and password for the following properties in the configuration file:

auth:
  defaultAuthentication:
    #Default password that is automatically added the first time
    #optimize is started.
    password: YOUR_USER_PASSWORD
    #Default user name that is automatically added the first time
    #optimize is started.
    user: YOUR_USER

By default the values are set to:

auth:
  defaultAuthentication:
    #Default password that is automatically added the first time
    #optimize is started.
    password: admin
    #Default user name that is automatically added the first time
    #optimize is started.
    user: admin

If you want to disable the default Optimize user creation, set the following property:

auth:
  defaultAuthentication:
    #Enables the creation of the default Optimize user. If you're using
    #Optimize in production, you should disable this property,
    #so you just use the users from the engine.
    creationEnabled: true

Utilize Engine Users

From engine version 7.7 onwards, you can use the user credentials from the engine to access Optimize. This behavior is enabled by default. However, you might want to restrict which engine users should be able to access Optimize. For that, create an engine group with a name of your choice, which is dedicated for access to Optimize. Now you can add the group id to the following property:

engines:
  #an alias of the engine, which will be used for internal purposes like
  #logging
  'sales':
    authentication:
      #With the specified group id, only engine users that are part of the
      #group can access optimize.
      accessGroup: ''

With this defined, only users who are members of the provided group can access Optimize.

Manually handle users

You can also manually handle users by accessing Elasticsearch directly.

To add a new user, just perform a POST-request on /optimize/users/YOUR_USER_ID with the body:

{
  "username" : "YOUR_USER_NAME",
  "password" : "YOUR_USER_PASSWORD"
}

If you want to delete a user, perform a DELETE-request on /optimize/users/YOUR_USER_ID.