Failed to create client for go-elasticsearch

Bosees · December 8, 2023, 2:27am

I'm trying to create a client using go-elasticsearch with a viewer permission user who can only play a read role. The problem is that I'm getting a 403 error. Here is the corresponding error log

"type":"security_exception","reason":"action [cluster:monitor/main] is unauthorized for user [readonly] with effective roles [viewer], this action is granted by the cluster privileges [monitor,manage,all]"

This does not happen in JS-elasticsearch.
Is the action related to monitor included by default in Go-elasticsearch? How can I turn it off? I don't see it when I look at the interface of the Config type.

This is my current connection code block.

cfg := elasticsearch.Config{
		Addresses: []string{
			esConfig.Host,
		},
		Username:          esConfig.User,
		Password:          esConfig.Password,
	}

I don't want to just grant permissions, I want to start with just viewer permissions like JS-Elasticsearch works.

system · January 5, 2024, 2:27am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Security_exception - action [cluster:monitor/main] is unauthorized for user [p595200] Elasticsearch elastic-stack-security	2	12995	December 13, 2017
elasticsearch.AuthorizationException: AuthorizationException(403, 'security_exception', 'action [cluster:monitor/main] is unauthorized for user***************this action is grante d by the cluster privileges [monitor,manage,all]') Elasticsearch	2	2385	February 16, 2023
Watcher showing security_exception error Elasticsearch elastic-stack-alerting	4	98	June 19, 2024
Action [cluster:monitor/main] is unauthorized for user Elasticsearch	4	16778	March 9, 2018
Error accessing elastic monitoring tab on kibana Kibana elastic-stack-monitoring	6	6672	April 24, 2022

Failed to create client for go-elasticsearch

Related Topics