For a user role, I would like to provide access to all indexes except specific indexes patterns can I do that?
Something like:
user:
indices:
'': read
'.': no access to these
Thanks
For a user role, I would like to provide access to all indexes except specific indexes patterns can I do that?
Something like:
user:
indices:
'': read
'.': no access to these
Thanks
Hi John,
One way to achieve this is to use the support for regular expressions in the roles file. These regular expressions user the Lucene Regexp format; some examples of this format can be be found in the elasticsearch documentation.
Do the indices that you don't want the user to access have a specific prefix or anything? If they do, you could define a regex like so:
user:
indices:
'/@$~(prefix.+)/': read
That example would allow any index that does not start with prefix
.
Thanks I used your example and just had to change the $ to a &
so
'/@&~(prefix.+)/': read
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.