From c65b969e3b5bbb25906b71317cf7f2f7abc14493 Mon Sep 17 00:00:00 2001
From: ionutboangiu <ionut.boangiu@itsyscom.com>
Date: Wed, 2 Aug 2023 02:29:39 -0400
Subject: [PATCH] Disabled security in elasticsearch default configuration
 template

---
 data/ansible/roles/elasticsearch/defaults/main.yaml            | 2 +-
 data/ansible/roles/elasticsearch/tasks/main.yaml               | 2 +-
 .../ansible/roles/elasticsearch/templates/elasticsearch.yml.j2 | 3 +++
 3 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/data/ansible/roles/elasticsearch/defaults/main.yaml b/data/ansible/roles/elasticsearch/defaults/main.yaml
index 3e8b5f4f9..d22993b3a 100644
--- a/data/ansible/roles/elasticsearch/defaults/main.yaml
+++ b/data/ansible/roles/elasticsearch/defaults/main.yaml
@@ -8,6 +8,6 @@ elasticsearch_repository: "deb [signed-by={{ elasticsearch_gpg_keyring }}] https
 auto_create_index: ".monitoring*,.watches,.triggered_watches,.watcher-history*,.ml*"
 elasticsearch_service_enabled: true
 elasticsearch_service_state: started
-elasticsearch_service_masked: no
+elasticsearch_service_masked: false
 elasticsearch_dependencies:
   - apt-transport-https
diff --git a/data/ansible/roles/elasticsearch/tasks/main.yaml b/data/ansible/roles/elasticsearch/tasks/main.yaml
index 3a9488857..e0877562d 100644
--- a/data/ansible/roles/elasticsearch/tasks/main.yaml
+++ b/data/ansible/roles/elasticsearch/tasks/main.yaml
@@ -33,7 +33,7 @@
     name: elasticsearch.service
     enabled: "{{ elasticsearch_service_enabled }}"
     state: "{{ elasticsearch_service_state }}"
-    # masked: "{{ elasticsearch_service_masked }}"
+    masked: "{{ elasticsearch_service_masked }}"
 
 - name: Configure Elasticsearch
   become: true
diff --git a/data/ansible/roles/elasticsearch/templates/elasticsearch.yml.j2 b/data/ansible/roles/elasticsearch/templates/elasticsearch.yml.j2
index 639af2381..9fd63d982 100644
--- a/data/ansible/roles/elasticsearch/templates/elasticsearch.yml.j2
+++ b/data/ansible/roles/elasticsearch/templates/elasticsearch.yml.j2
@@ -6,3 +6,6 @@ path.logs: "/var/log/elasticsearch"
 network.host: "127.0.0.1"
 http.port: 9200
 action.auto_create_index: "{{ auto_create_index }}"
+xpack.security.enabled: false
+xpack.security.transport.ssl.enabled: false
+xpack.security.http.ssl.enabled: false
\ No newline at end of file