Hello OpenSearch community,
This is a proposal to build an inbuilt security module within OpenSearch core that enforces basic authentication, auditing and encryption-in-transit, and makes security a first-class citizen for OpenSearch 2.0. The intent is to add a minimum level of security to every OpenSearch distribution, while maintaining the flexibility to override with a custom security plugin, to safeguard OpenSearch users against severe data breaches.
Read our detailed proposal and provide your valuable feedback on this issue #1029
Thanks!