ApiKey for a rule maker viewer

A_Mightiev · August 10, 2023, 2:23pm

Hi
I'm trying to create an apikey that would allow to create/view rules/alerts in kibana.
I tried this restrictions but apparently they are not enough:

{
  "kibana_rulemaker": {
    "cluster": [],
    "indices": [],
    "applications": [
      {
        "application": "kibana-.kibana",
        "privileges": [
          "feature_stackAlerts.all",
          "feature_actions.all"
        ],
        "resources": [
          "*"
        ]
      }
    ],
    "run_as": [],
    "metadata": {},
    "transient_metadata": {
      "enabled": true
    }
  }
}

If I try to see a specific rule say

[server]$ curl -XGET localhost:5601/api/alerting/rule/abc -H "kbn-x: true" -H "Authorization: ApiKey: abcd"
{"statusCode":403,"error":"Forbidden","message":"Unauthorized to get a \"metrics.alert.threshold\" rule by \"infrastructure\""}

A_Mightiev · August 10, 2023, 2:41pm

Apparently I only need to add
"feature_infrastructure.all"

system · September 7, 2023, 2:42pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Can't use ApiKey to update rule Kibana elastic-stack-alerting	1	248	July 3, 2023
Rules API Key Kibana elastic-stack-alerting	10	808	August 16, 2022
Error creating rule via API Kibana	3	167	October 4, 2023
Kibana API create rule not visible in Kibana Kibana elastic-stack-alerting	1	115	May 2, 2024
Create Alerting in Kibana using API Kibana elastic-stack-alerting	6	484	December 12, 2020

ApiKey for a rule maker viewer

Related Topics