I want to set up document level security using ABAC
I want to set up a role that will mandate that a user has all the necessary attributes, but each user will have a different set of attributes - rather than making many roles
OpenSearch gets around this via: Users and roles - OpenSearch documentation
"Attributes are optional user properties that you can use for variable substitution in index permissions or document-level security."
The attributes can then be used in the role definition
Is there an equivalent in Elasticsearch, or would I just need many roles?