Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Can Elasticsearch URL on Bitbucket be wrapped in SSL?

OneTech IT
OneTech IT
Contributor
February 15, 2018

I know that the default URL for Elasticsearch on Bitbucket is http://localhost:7992. 

Is there a way to wrap Elasticsearch in SSL, so that the URL becomes https://localhost:7992, so all traffic to and from Elasticsearch is encrypted?

Version: Bitbucket 5.5.0

Answer
Watch
Like Be the first to like this
967 views

1 answer

0 votes
Craig Castle-Mead
Craig Castle-Mead
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 18, 2018

Hi,

While ensuring SSL is on is generally a good rule of thumb, just wondering if this is a necessity given your Bitbucket and Elasticsearch are running on the same node and if someone is logged in to your server to get access to the lo interface to intercept the traffic, you've got a bigger issue anyway.

Unsure if the bundled elasticsearch would allow it, but https://www.elastic.co/guide/en/shield/current/ssl-tls.html outlines the general steps to SSL enable ElasticSearch. This seems to require Elastic Security (formerly Shield) is required and that is a paid subscription product https://www.elastic.co/subscriptions.

If you're deployed to AWS, you might consider using Elastic Cloud but deployed in AWS (https://www.elastic.co/cloud/as-a-service). Their pricing includes the AWS resources and the full elastic X-pack (includes security) and comes with SSL out of the box.

CCM

Reply

Suggest an answer

Log in or Sign up to answer
Bitbucket
Bitbucket
TAGS
AUG Leaders

Atlassian Community Events

    See all events