Read-only user doesn't see Discover menu

[john047]

Hi,

1. added tenant
2. created read_only_index role and maped three roles to the read-only user: https://opensearch.org/docs/1.0/security-plugin/access-control/users-roles/#set-up-a-read-only-user-in-opensearch-dashboards

After that read-only user doesn't see "Discover" menu on the left, there are only dashboards that need to be created. It is required that the read-only user has access to the logs of a specific index that were defined when creating the read_only_index role.

Help, please.

[john047]

How can I make the Discover menu available to the reade-only user, without assigning an all_access role, as in the picture from the documentation? https://opensearch.org/docs/2.15/security/access-control/users-roles/#opensearch-dashboards-readonly_mode

[john047]

Deployment via helm is contained in the config by default: opensearch_security.readonly_mode.roles: [kibana_read_only]. Also from the documentation https://opensearch.org/docs/1.0/security-plugin/access-control/users-roles/#set-up-a-read-only-user-in-opensearch-dashboards to add kibana_read_only role to a new user. Deleted this role and got the desired result.

[kavilla]

Hello @john047, thank you for opening.

@opensearch-project/admin please redirect to security dashboards team please.

[stephen-crawford]

[Triage] Hi @john047, thanks for filing this issue. This looks a possible issue with either documentation or the configuration settings so someone will need to review your scenario and address accordingly.