If you think it is a bug report or you have a technical issue, please answer the following questions.
Elasticsearch version: 8.16.1
Kibana version (if relevant): 8.16.1
Browser version (if relevant): FF - 135.0.01
Describe the issue: After enabling the Searchguard Auth Tokens feature, the elasticsearch node backing Kibana is routinely showing INVALID_COMPACT_JWE errors in /var/log/elasticsearch/CLUSTER.log, making it more difficult to troubleshoot authentication and permission related logs that appear in that log. Unsure if this is a bug, or possibly a node on my end configured incorrectly, but looking for a way to suppress these particular messages.
Expected behavior: Prior to enabling auth tokens, these errors were not appearing.
Provide logs:
Elasticsearch
[2025-02-24T23:55:38,930][WARN ][o.a.c.r.s.j.j.JweCompactConsumer] [KIBANA-01] 5 JWE parts are expected
[2025-02-24T23:55:38,930][ERROR][c.f.s.a.r.RestRequestAuthenticationProcessor] [KIBANA-01] ‘org.apache.cxf.rs.security.jose.jwe.JweException: INVALID_COMPACT_JWE’ extracting credentials from sg_auth_token authentication frontend
org.apache.cxf.rs.security.jose.jwe.JweException: INVALID_COMPACT_JWE
at org.apache.cxf.rs.security.jose.jwe.JweCompactConsumer.(JweCompactConsumer.java:41) ~[?:?]
at org.apache.cxf.rs.security.jose.jwe.AbstractJweDecryption.decrypt(AbstractJweDecryption.java:50) ~[?:?]
at com.floragunn.searchguard.authtoken.AuthTokenService.getVerifiedJwtToken(AuthTokenService.java:492) ~[?:?]
at com.floragunn.searchguard.authtoken.AuthTokenHttpJwtAuthenticator.extractCredentials(AuthTokenHttpJwtAuthenticator.java:58) ~[?:?]