I've worked by xpack security and its custom realms with its basic definitions as well as run-as feature.
But what I am looking for now, is passing on the token (like SAML) to the ES and then parse that token to authenticate the request.
How can I pass this token to the ES and have access to it in my custom realm? Can I have my own custom headers in the request which hands this token?
In this case, Kibana doesn't play any role then I don't want to pass on something throw Kibana.
Just think I'm calling the ES directly with curl or my application. My question is this could I send the token (let's say SAML) by header and get access to that in the custom realm code and use that for Authentication and maybe use to discover the roles.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.