Hi
I'm trying to create an apikey that would allow to create/view rules/alerts in kibana.
I tried this restrictions but apparently they are not enough:
{
"kibana_rulemaker": {
"cluster": [],
"indices": [],
"applications": [
{
"application": "kibana-.kibana",
"privileges": [
"feature_stackAlerts.all",
"feature_actions.all"
],
"resources": [
"*"
]
}
],
"run_as": [],
"metadata": {},
"transient_metadata": {
"enabled": true
}
}
}
If I try to see a specific rule say
[server]$ curl -XGET localhost:5601/api/alerting/rule/abc -H "kbn-x: true" -H "Authorization: ApiKey: abcd"
{"statusCode":403,"error":"Forbidden","message":"Unauthorized to get a \"metrics.alert.threshold\" rule by \"infrastructure\""}