I know search guard offers this but I would like to know if there is any possibility to make an index immutable and by immutable I mean make it impossible to create a document with _version > 1. I would like to log documents related to user authentication in the system (like what auditbeat would do) but I would also like to make sure that from any client node a potential hacker who logs in the system and hence gets his/her signed in data on elastic would't be able to push the same documents id and change that data to erase traceability.
Thank you in advance for the answer and time.