Briefly, this error occurs when Elasticsearch fails to retrieve user information from the UserInfo endpoint, possibly due to incorrect endpoint configuration, network issues, or authentication problems. To resolve this, ensure the endpoint is correctly configured in your Elasticsearch settings. Check your network connectivity to the endpoint. Also, verify the authentication credentials and permissions, ensuring they allow access to the UserInfo endpoint.
This guide will help you check for common problems that cause the log ” Failed to get user information from the UserInfo endpoint. Code=[{}]; ” to appear. To understand the issues related to this log, read the explanation below about the following Elasticsearch concepts: plugin.
Log Context
Log “Failed to get user information from the UserInfo endpoint. Code=[{}];” class name is OpenIdConnectAuthenticator.java. We extracted the following from Elasticsearch source code for those seeking an in-depth context :
} else { final Header wwwAuthenticateHeader = httpResponse.getFirstHeader("WWW-Authenticate"); if (Strings.hasText(wwwAuthenticateHeader.getValue())) { BearerTokenError error = BearerTokenError.parse(wwwAuthenticateHeader.getValue()); claimsListener.onFailure( new ElasticsearchSecurityException("Failed to get user information from the UserInfo endpoint. Code=[{}]; " + "Description=[{}]"; error.getCode(); error.getDescription())); } else { claimsListener.onFailure( new ElasticsearchSecurityException("Failed to get user information from the UserInfo endpoint. Code=[{}]; " + "Description=[{}]"; httpResponse.getStatusLine().getStatusCode();