Hi Elastic Shield folks,
Is it possible to have a dynamic set of changing rules at runtime?
For example, I would like to have a social network approach to data access - where each user manages some groups other users are a part of. I'd like to have a Shield user for every user where what they can access is based on what groups of other users they are in. When this changes, Shield rules would need to change. Is this possible?
PS. I have been thinking of restricting users to their own index, and using index aliases to represent their group permissions. But this would still require dynamic runtime changes, e.g. when a new user signs up. Also, the data within an index would be heterogeneous as there would be lots of types with very differing schemas, I believe the better approach is to have indexes with homogenous documents, that is with low variability between their structures. Therefore a solution where indexes represent schema types and types represent the different groups might make sense, but this seems harder to implement from a Shield point of view?