elasticsearch-readonlyrest-plugin icon indicating copy to clipboard operation
elasticsearch-readonlyrest-plugin copied to clipboard

Published 20 hours ago verified publisher icon sscarduzio

Add Kibana spaces security

Open fbaligand opened this issue 4 years ago • 3 comments

It would be nice to have the ability to configure security access for each Kibana space:

  • none: no access to one Kibana space
  • read: read access to one Kibana space
  • all: all access to one Kibana space

All that associated to one role in readonlyrest.yml

fbaligand avatar Sep 15 '19 14:09 fbaligand

We have a new kibana.access: api_only and kibana.allowed_api_paths (see docs) that may help with solving the problem described in this issue.

coutoPL avatar Apr 18 '23 18:04 coutoPL

Yes it could answer the need with /s/SPACE_ID/api/* URI. That said, for read access for one space, this seems to be more complex to configure.

fbaligand avatar Apr 18 '23 19:04 fbaligand

it would be complex only if you want a user to have read only permission to a space in particular, it would be OK if a user is read only in general.

But yes, giving explicit permissions would require some research.

sscarduzio avatar Apr 19 '23 14:04 sscarduzio