Kibana: [console] GET with body acts as POST
Kibana version:
5.3.0
Elasticsearch version:
5.3.0
Server OS version:
Mac
Browser version:
Chrome 57
Browser OS version:
Original install method (e.g. download page, yum, from source, etc.):
download page
Description of the problem including expected versus actual behavior:
Steps to reproduce:
- In dev tools try: GET /customer/test {}
- Execute
- This is what you get:
{
"_index": "customer",
"_type": "test",
"_id": "AVtYSTXO_fGvlLKTJrMR",
"_version": 1,
"result": "created",
"_shards": {
"total": 2,
"successful": 1,
"failed": 0
},
"created": true
}
GET should never insert a document!
arunqkumar
All 13 comments
@tylersmalley any chance this is something we can tackle before 6.0?
alexfrancoeur
on 26 May 2017
@alexbrasetvik, we will try for it. It's all dependent on when the 6.0 migration changes are finalized.
tylersmalley
on 26 May 2017
awesome - thanks @tylersmalley. You tagged the wrong Alex btw. I'm the one with the extremely French Canadian last name 馃槃
alexfrancoeur
on 26 May 2017
this bug just bit me in production, and I can't delete the mappings that were created by another dev :(
this is pretty severe bug IMO and apparently present in much earlier versions
JohnnyMarnell
on 3 Aug 2017
If you look at the network tab, GET is being modified by a POST internally:
This issue is mainly in Kibana devtools that it is modifying the method and not in elasticsearch updating documents with GET operations. That said, until we do not fix this the workarounds are:
- Use plain curl (which you can do by clicking on the button next to the arrow and copying as CURL).
- Prevent using GET operations with JSON inputs
gmoskovicz
on 15 Aug 2017
A quick summary what's happening: browsers will strip request bodies on GET requests, so we automatically convert these to POST requests.
I completely agree that this shouldn't be happening, but the fix needs to have a broader discussion because chunks of the elasticsearch docs use GET requests with bodies and have a view in console button, example
jbudz
on 5 Oct 2017
Blocked by updating all the docs as @jbudz pointed out above.
tylersmalley
on 7 Nov 2017
@tylersmalley If all the documentation was updated, then why is the issue blocked? I think you mean unblocked, right?
I also got bitten today by this bug.
amerzad
on 6 May 2018
@amerzad, the documentation has not been updated - so this issue is blocked on the completion of that.
tylersmalley
on 17 May 2018
I got bitten today by this bug as well....three of us spent 2 hours trying to find the root cause....
wangyunlongau
on 22 Jan 2019
I got bitten today by this bug as well....three of us spent 2 hours trying to find the root cause....
@wangyunlongau , me too. When testing Kibana it's very easy to trigger this bug. Perhaps some error-checking on the front-end could issue a warning.
samd2
on 22 Jan 2019
Pinging @elastic/es-ui
elasticmachine
on 14 Jun 2019
For anyone who's interested, I'm solving this in https://github.com/elastic/kibana/pull/39170 by removing the coercion from GET to POST in the browser and swapping out our http lib on the server with one that allows bodies with GET requests (and DELETE requests).
cjcenizal
on 20 Jun 2019
Related issues
bradvido
路
3Comments
timmolter
路
3Comments
bhavyarm
路
3Comments
treussart
路
3Comments
spalger
路
3Comments
Most helpful comment
If you look at the network tab, GET is being modified by a POST internally:
This issue is mainly in Kibana devtools that it is modifying the method and not in elasticsearch updating documents with GET operations. That said, until we do not fix this the workarounds are: