We have created a new space just for read only user to access - Visibility in Analytics->Dashboard, Discover and Visualise.
Then we created a new role within new space only, with read only privileges again for Analytics->Dashboard, Discover and Visualise. We did not assigned any Cluster privileges as we are just testing RBAC at this stage.
And then we created a new user and assigned new role to it.
For some reason when the new user logins to Kibana it can change the space to 'default' one with full access to everything.... On top of that within new space Management menu is available (along with Analytics one) with all submenus and again full access to write/read etc.
Is this a bug or we are doing something wrong?
We are running ELK 7.11 on k8s (self managed) on GCP.