Fix: plugin api route with security enabled (elastic#23334) (elastic#…

…23402) Closes elastic#23266 This is more of a quick fix than the final solution. The issue was that Canvas tries to check the plugins API without checking to see if the user it logged in. As a result, instead of the plugins response, it gets the HTML from the login page and that causes an error to be thrown when attempting to parse the results. For now, this PR just disables the auth requirement on the Canvas plugin API endpoint.
cchaos · Sep 21, 2018 · 61b67e3 · 61b67e3
1 parent b93b868
commit 61b67e3
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/x-pack/plugins/canvas/server/routes/plugins.js b/x-pack/plugins/canvas/server/routes/plugins.js
@@ -18,5 +18,8 @@ export function plugins(server) {
 
       reply(getPluginStream(type));
     },
+    config: {
+      auth: false,
+    },
   });
 }