Can X-Pack be used entirely for application authentication and authorization

For an app we are creating, we are still using .NET as middleware that includes authentication and authorization over RESTful services that essentially calls ES apis. Was wondering if X-Pack can essentially handle this tier in a similar fashion. For example, any registered users will have indexing permissions, while unregistered users will only have searching capabilities. It needs to be somewhat fine-grained as well in terms of what can be indexed.

If the above is possible using X-Pack with ES, we may eliminate the .NET middleware altogether since the heart of the app is through ES.

This should be possible, but it will depend on what you're trying to do.

For example you can enable anonymous access with these instructions
https://www.elastic.co/guide/en/x-pack/current/anonymous-access.html

Then you would want to create roles for the other users giving them write access as needed.
https://www.elastic.co/guide/en/x-pack/current/authorization.html

Depending on how fine grained you need the access to be will be the decider here. Write access is granted to an entire index. We lack the ability to do fine grained write access on a document level.

Good luck.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.