[DOCS] WIP - Connection to v8 (#6153)

* Initial outline for new documentation page

* Updating connecting to v8 docs

* Update geo queries

* Update documentation

Author: stevejgordon

docs/client-concepts/certificates/working-with-certificates.asciidoc

@@ -120,3 +120,9 @@ If you go for a vendor generated SSL certificate, it's common practice for the c
 in the certificate chain. When using such a certificate, use `CertificateValidations.AuthorityPartOfChain` which validates that
 the local CA certificate is part of the chain that was used to generate the servers key.
 
+==== Applying a CA Fingerprint
+
+During development against a newly created v8 cluster, you may also configure the client to authenticate using the CA fingerprint logged by the 
+server at initial startup. The fingerprint can be set by calling the `CertificateFingerprint` method on a ConnectionSettings instance.
+See <<connecting-to-elasticsearch-v8, Connecting to Elasticsearch v8.x using the v7.x client>> for further details.
+

docs/client-concepts/connection/connecting-to-elasticsearch-v8.asciidoc

@@ -0,0 +1,94 @@
+:ref_current: https://www.elastic.co/guide/en/elasticsearch/reference/7.17
+
+:github: https://github.com/elastic/elasticsearch-net
+
+:nuget: https://www.nuget.org/packages
+
+////
+IMPORTANT NOTE
+==============
+This file has been generated from https://github.com/elastic/elasticsearch-net/tree/7.x/src/Tests/Tests/ClientConcepts/Connection/ConnectingToElasticsearchV8.doc.cs. 
+If you wish to submit a PR for any spelling mistakes, typos or grammatical errors for this file,
+please modify the original csharp file found at the link and submit the PR with that change. Thanks!
+////
+
+[[connecting-to-elasticsearch-v8]]
+=== Connecting to Elasticsearch v8.x using the v7.17.x client
+
+We recommend using the latest client with a corresponding major version when connecting to Elasticsearch. Until the v7 .NET client is 
+generally available, you may use the v7.17.x client to communicate with a 8.x Elasticsearch cluster. There are several important considerations 
+regarding configuration. Failure to correctly configure the client to connect using the security features enabled on the server will result in 
+an exception being thrown during the initial client communication that will prevent further use of the client.
+
+:security: https://www.elastic.co/guide/en/elasticsearch/reference/8.1/configuring-stack-security.html
+
+:security-clients: https://www.elastic.co/guide/en/elasticsearch/reference/8.1/configuring-stack-security.html#_connect_clients_to_elasticsearch_5
+
+==== Security and Certificates
+
+Newly installed Elasticsearch v8 clusters start with security configuration {security}[enabled automatically by default]. As a result, 
+a certificate authority and certificate is created for secure HTTPS communication. Additionally, an `elastic` user is created with a
+unique, secure password. Elasticsearch logs details of the security configuration when it first starts, enabling the collection of a
+certificate fingerprint, along with the password configured for the `elastic` user. In a development environment, you will need to collect
+these pieces of information, required to configure the client to securely communicate with the server. The 
+{security-clients}[Elasticsearch documentation] provides commands which may also be used to retrieve this information after the cluster has started.
+
+[[ca-fingerprint]]
+===== Applying the CA Fingerprint
+
+The simplest configuration option during development is to connect to the server using the CA fingerprint logged by the server at initial startup. 
+The fingerprint can be set by calling the `CertificateFingerprint` method on a `ConnectionSettings` instance.
+
+[source,csharp]
+----
+var pool = new SingleNodeConnectionPool(new Uri("http://localhost:9200"));
+
+var settings = new ConnectionSettings(pool)
+    .CertificateFingerprint("94:75:CE:4F:EB:05:32:83:40:B8:18:BB:79:01:7B:E0:F0:B6:C3:01:57:DB:4D:F5:D8:B8:A6:BA:BD:6D:C5:C4");
+
+var client = new ElasticClient(settings);
+----
+
+If preferred, you may also configure the client to work with the certificate in the usual way. 
+See <<working-with-certificates, Working with certificates>> for further details.
+
+[[basic-authentication]]
+===== Basic Authentication
+
+Additionally, you will need to provide the basic authentication credentials for a user account configured on the server. During development, 
+you may begin by using the `elastic` user and the automatically generated password captured from the server logs.
+
+[source,csharp]
+----
+var pool = new SingleNodeConnectionPool(new Uri("http://localhost:9200"));
+
+var settings = new ConnectionSettings(pool)
+    .CertificateFingerprint("94:75:CE:4F:EB:05:32:83:40:B8:18:BB:79:01:7B:E0:F0:B6:C3:01:57:DB:4D:F5:D8:B8:A6:BA:BD:6D:C5:C4")
+    .BasicAuthentication("elastic", "password");
+
+var client = new ElasticClient(settings);
+----
+
+==== Enabling Compatibility Mode
+
+The Elasticsearch server version 8.0 is introducing a new compatibility mode that allows you a smoother upgrade 
+experience from 7 to 8. In a nutshell, you can use the latest 7.x Elasticsearch client with an 8.x Elasticsearch 
+server, giving more room to coordinate the upgrade of your codebase to the next major version. 
+
+If you want to leverage this functionality, please make sure that you are using the latest 7.x client and set 
+the environment variable `ELASTIC_CLIENT_APIVERSIONING` to `true`. The client is handling the rest internally. 
+
+Compatibility mode may also be enabled directly on `ConnectionSettings` by calling `EnableApiVersioningHeader`.
+
+[source,csharp]
+----
+var pool = new SingleNodeConnectionPool(new Uri("http://localhost:9200"));
+
+var settings = new ConnectionSettings(pool)
+    .CertificateFingerprint("94:75:CE:4F:EB:05:32:83:40:B8:18:BB:79:01:7B:E0:F0:B6:C3:01:57:DB:4D:F5:D8:B8:A6:BA:BD:6D:C5:C4")
+    .BasicAuthentication("elastic", "password")
+    .EnableApiVersioningHeader();
+
+var client = new ElasticClient(settings);
+----
+

docs/high-level.asciidoc

@@ -67,6 +67,8 @@ configuration options and components to change this behaviour
 
 * <<function-as-a-service-environments, Using the Client in a Function-as-a-Service Environment>>
 
+* <<connecting-to-elasticsearch-v8, Connecting to Elasticsearch v8.x using the v7.x client>>
+
 include::client-concepts/connection/configuration-options.asciidoc[]
 
 include::client-concepts/connection-pooling/building-blocks/connection-pooling.asciidoc[]
@@ -77,6 +79,8 @@ include::client-concepts/certificates/working-with-certificates.asciidoc[]
 
 include::client-concepts/connection/function-as-a-service-environments.asciidoc[]
 
+include::client-concepts/connection/connecting-to-elasticsearch-v8.asciidoc[]
+
 [[serialization]]
 == Serialization
 

docs/query-dsl/geo/bounding-box/geo-bounding-box-query-usage.asciidoc

@@ -30,6 +30,7 @@ q
     )
     .ValidationMethod(GeoValidationMethod.Strict)
     .Type(GeoExecution.Indexed)
+    .IgnoreUnmapped(true)
 )
 ----
 
@@ -48,7 +49,8 @@ new GeoBoundingBoxQuery
         BottomRight = new GeoLocation(-34, 34),
     },
     Type = GeoExecution.Indexed,
-    ValidationMethod = GeoValidationMethod.Strict
+    ValidationMethod = GeoValidationMethod.Strict,
+    IgnoreUnmapped = true
 }
 ----
 
@@ -70,7 +72,8 @@ new GeoBoundingBoxQuery
         "lat": -34.0,
         "lon": 34.0
       }
-    }
+    },
+    "ignore_unmapped": true
   }
 }
 ----
@@ -89,6 +92,7 @@ q
     )
     .ValidationMethod(GeoValidationMethod.Strict)
     .Type(GeoExecution.Indexed)
+    .IgnoreUnmapped(true)
 )
 ----
 
@@ -106,7 +110,8 @@ new GeoBoundingBoxQuery
         WellKnownText = "BBOX (-34, 34, 34, -34)"
     },
     Type = GeoExecution.Indexed,
-    ValidationMethod = GeoValidationMethod.Strict
+    ValidationMethod = GeoValidationMethod.Strict,
+    IgnoreUnmapped = true
 }
 ----
 
@@ -121,7 +126,8 @@ new GeoBoundingBoxQuery
     "boost": 1.1,
     "locationPoint": {
       "wkt": "BBOX (-34, 34, 34, -34)"
-    }
+    },
+    "ignore_unmapped": true
   }
 }
 ----

docs/query-dsl/geo/distance/geo-distance-query-usage.asciidoc

@@ -28,6 +28,7 @@ q
     .Location(34, -34)
     .Distance("200m")
     .ValidationMethod(GeoValidationMethod.IgnoreMalformed)
+    .IgnoreUnmapped(true)
 )
 ----
 
@@ -43,7 +44,8 @@ new GeoDistanceQuery
     DistanceType = GeoDistanceType.Arc,
     Location = new GeoLocation(34, -34),
     Distance = "200m",
-    ValidationMethod = GeoValidationMethod.IgnoreMalformed
+    ValidationMethod = GeoValidationMethod.IgnoreMalformed,
+    IgnoreUnmapped = true,
 }
 ----
 
@@ -60,7 +62,8 @@ new GeoDistanceQuery
     "locationPoint": {
       "lat": 34.0,
       "lon": -34.0
-    }
+    },
+    "ignore_unmapped": true
   }
 }
 ----

docs/query-dsl/geo/polygon/geo-polygon-query-usage.asciidoc

@@ -26,6 +26,7 @@ q
     .Field(p => p.LocationPoint)
     .ValidationMethod(GeoValidationMethod.Strict)
     .Points(new GeoLocation(45, -45), new GeoLocation(-34, 34), new GeoLocation(70, -70))
+    .IgnoreUnmapped(true)
 )
 ----
 
@@ -39,7 +40,8 @@ new GeoPolygonQuery
     Name = "named_query",
     ValidationMethod = GeoValidationMethod.Strict,
     Points = new[] { new GeoLocation(45, -45), new GeoLocation(-34, 34), new GeoLocation(70, -70) },
-    Field = Infer.Field<Project>(p => p.LocationPoint)
+    Field = Infer.Field<Project>(p => p.LocationPoint),
+    IgnoreUnmapped = true
 }
 ----
 
@@ -66,7 +68,8 @@ new GeoPolygonQuery
           "lon": -70.0
         }
       ]
-    }
+    },
+    "ignore_unmapped": true
   }
 }
 ----

tests/Tests/ClientConcepts/Certificates/WorkingWithCertificates.doc.cs

@@ -216,6 +216,23 @@ public PkiApiTests(PkiCluster cluster, EndpointUsage usage) : base(cluster, usag
 			[I] public async Task UsedHttps() => await AssertOnAllResponses(r => r.ApiCall.Uri.Scheme.Should().Be("https"));
 		}
 #endif
+
+		/**
+		 * ==== Applying a CA Fingerprint
+		 *
+		 * During development against a newly created v8 cluster, you may also configure the client to authenticate using the CA fingerprint logged by the 
+		 * server at initial startup. The fingerprint can be set by calling the `CertificateFingerprint` method on a ConnectionSettings instance.
+		 * See <<connecting-to-elasticsearch-v8, Connecting to Elasticsearch v8.x using the v7.x client>> for further details.
+		 */		
+		[U] public void CertificateFingerprint()
+		{
+			var pool = new SingleNodeConnectionPool(new Uri("http://localhost:9200"));
+
+			var settings = new ConnectionSettings(pool)
+				.CertificateFingerprint("94:75:CE:4F:EB:05:32:83:40:B8:18:BB:79:01:7B:E0:F0:B6:C3:01:57:DB:4D:F5:D8:B8:A6:BA:BD:6D:C5:C4");
+
+			var client = new ElasticClient(settings);
+		}
 	}
 
 #if !DOTNETCORE

tests/Tests/ClientConcepts/Connection/ConnectingToElasticsearchV8.doc.cs

@@ -0,0 +1,95 @@
+// Licensed to Elasticsearch B.V under one or more agreements.
+// Elasticsearch B.V licenses this file to you under the Apache 2.0 License.
+// See the LICENSE file in the project root for more information
+
+using System;
+using Elastic.Elasticsearch.Xunit.XunitPlumbing;
+using Elasticsearch.Net;
+using Nest;
+
+namespace Tests.ClientConcepts.Connection
+{
+	public class ConnectingToElasticsearchV8
+	{
+		/**[[connecting-to-elasticsearch-v8]]
+		 * === Connecting to Elasticsearch v8.x using the v7.17.x client
+		 *
+		 * We recommend using the latest client with a corresponding major version when connecting to Elasticsearch. Until the v7 .NET client is 
+		 * generally available, you may use the v7.17.x client to communicate with a 8.x Elasticsearch cluster. There are several important considerations 
+		 * regarding configuration. Failure to correctly configure the client to connect using the security features enabled on the server will result in 
+		 * an exception being thrown during the initial client communication that will prevent further use of the client.
+		 *
+		 * :security: https://www.elastic.co/guide/en/elasticsearch/reference/8.1/configuring-stack-security.html
+		 * :security-clients: https://www.elastic.co/guide/en/elasticsearch/reference/8.1/configuring-stack-security.html#_connect_clients_to_elasticsearch_5
+		 *
+		 * ==== Security and Certificates
+		 * Newly installed Elasticsearch v8 clusters start with security configuration {security}[enabled automatically by default]. As a result, 
+		 * a certificate authority and certificate is created for secure HTTPS communication. Additionally, an `elastic` user is created with a
+		 * unique, secure password. Elasticsearch logs details of the security configuration when it first starts, enabling the collection of a
+		 * certificate fingerprint, along with the password configured for the `elastic` user. In a development environment, you will need to collect
+		 * these pieces of information, required to configure the client to securely communicate with the server. The 
+		 * {security-clients}[Elasticsearch documentation] provides commands which may also be used to retrieve this information after the cluster has started.
+		 * 
+		 * [[ca-fingerprint]]
+		 * ===== Applying the CA Fingerprint
+		 *
+		 * The simplest configuration option during development is to connect to the server using the CA fingerprint logged by the server at initial startup. 
+		 * The fingerprint can be set by calling the `CertificateFingerprint` method on a `ConnectionSettings` instance.
+		 */
+		[U] public void CertificateFingerprint()
+		{
+			var pool = new SingleNodeConnectionPool(new Uri("http://localhost:9200"));
+
+			var settings = new ConnectionSettings(pool)
+				.CertificateFingerprint("94:75:CE:4F:EB:05:32:83:40:B8:18:BB:79:01:7B:E0:F0:B6:C3:01:57:DB:4D:F5:D8:B8:A6:BA:BD:6D:C5:C4");
+
+			var client = new ElasticClient(settings);
+		}
+
+		/**
+		 * If preferred, you may also configure the client to work with the certificate in the usual way. 
+		 * See <<working-with-certificates, Working with certificates>> for further details.
+
+		 * [[basic-authentication]]
+		 * ===== Basic Authentication
+		 * 
+		 * Additionally, you will need to provide the basic authentication credentials for a user account configured on the server. During development, 
+		 * you may begin by using the `elastic` user and the automatically generated password captured from the server logs.
+		 */
+		[U] public void BasicAuth()
+		{
+			var pool = new SingleNodeConnectionPool(new Uri("http://localhost:9200"));
+
+			var settings = new ConnectionSettings(pool)
+				.CertificateFingerprint("94:75:CE:4F:EB:05:32:83:40:B8:18:BB:79:01:7B:E0:F0:B6:C3:01:57:DB:4D:F5:D8:B8:A6:BA:BD:6D:C5:C4")
+				.BasicAuthentication("elastic", "password");
+
+			var client = new ElasticClient(settings);
+		}
+		
+		/**
+		 * ==== Enabling Compatibility Mode
+		 *
+		 * The Elasticsearch server version 8.0 is introducing a new compatibility mode that allows you a smoother upgrade 
+		 * experience from 7 to 8. In a nutshell, you can use the latest 7.x Elasticsearch client with an 8.x Elasticsearch 
+		 * server, giving more room to coordinate the upgrade of your codebase to the next major version. 
+
+		 * If you want to leverage this functionality, please make sure that you are using the latest 7.x client and set 
+		 * the environment variable `ELASTIC_CLIENT_APIVERSIONING` to `true`. The client is handling the rest internally. 
+		 *
+		 * Compatibility mode may also be enabled directly on `ConnectionSettings` by calling `EnableApiVersioningHeader`.
+		 */
+
+		[U] public void CompatibilityMode()
+		{
+			var pool = new SingleNodeConnectionPool(new Uri("http://localhost:9200"));
+
+			var settings = new ConnectionSettings(pool)
+				.CertificateFingerprint("94:75:CE:4F:EB:05:32:83:40:B8:18:BB:79:01:7B:E0:F0:B6:C3:01:57:DB:4D:F5:D8:B8:A6:BA:BD:6D:C5:C4")
+				.BasicAuthentication("elastic", "password")
+				.EnableApiVersioningHeader();
+
+			var client = new ElasticClient(settings);
+		}
+	}
+}

tests/Tests/high-level.asciidoc

@@ -46,12 +46,14 @@ configuration options and components to change this behaviour
 - <<modifying-default-connection, Modifying the default connection>>
 - <<working-with-certificates, Working with certificates>>
 - <<function-as-a-service-environments, Using the Client in a Function-as-a-Service Environment>>
+- <<connecting-to-elasticsearch-v8, Connecting to Elasticsearch v8.x using the v7.x client>>
 
 include::client-concepts/connection/configuration-options.asciidoc[]
 include::client-concepts/connection-pooling/building-blocks/connection-pooling.asciidoc[]
 include::client-concepts/connection/modifying-default-connection.asciidoc[]
 include::client-concepts/certificates/working-with-certificates.asciidoc[]
 include::client-concepts/connection/function-as-a-service-environments.asciidoc[]
+include::client-concepts/connection/connecting-to-elasticsearch-v8.asciidoc[]
 
 [[serialization]]
 == Serialization