Hi Team,
I don't quite get this, what's causing this issue,
roles.yml
> hello:
> cluster:
> - all
> indices:
> - names: 'twitter'
> privileges:
> - all
x-pack]$./users list
test : monitoring_user
hello : ingest_admin
sample : -
x-pack]$curl --user hello:hello123 -XDELETE '10.245.30.45:9200/twitter?pretty' { "error" : { "root_cause" : [ { "type" : "security_exception", "reason" : "action [indices:admin/delete] is unauthorized for user [hello]" } ], "type" : "security_exception", "reason" : "action [indices:admin/delete] is unauthorized for user [hello]" }, "status" : 403 }
Could you explain me about cluster privileges, what needs to be given for the normal user in order to make it work? If you're going to say admin, then there wouldn't be any security here right? Anyone can fire anything isn't it?
What's the optimal combination of these below?
cluster privilege : ?
x-pack user privilege : superuser or whichever appropriate for a normal user?
indice privilege : ?