Managing field access from kibana

batzos · June 7, 2016, 2:38pm

Could you comment on the following points?

If you have not installed shield in Kibana, but only in Elasticsearch, you connect without authentification to Kibana and when you run a query from Kibana, you are asked to provide your credentials in order to connect to Elasticsearch.
The users and the roles are all defined in the shield plugin in Elasticsearch. The only reason to install shield also in Kibana is to have the authentication before you connect to Kibana.
The example given in the documentation for defining a role for Kibana is the following:

my_kibana_user:
cluster:

monitor
indices:
names: 'logstash-*'
privileges:
view_index_metadata
read
names: '.kibana*'
privileges:
manage
read
index

Is there Field Level Security possible as it is for elasticsearch users? Can we define the fields of the indices where the Kibana user can have access like the following one for the fields "title", "body":

POST /_shield/role/my_fls_role
{
"indices": [
{
"names": [ "index1", "index2" ],
"privileges": ["read"],
"fields": [ "title", "body" ]
}
]
}

Thank you in advance.

Kind regards,

Dimitrios

jaymode · June 10, 2016, 11:33am

I believe that this should work. One thing to be aware of is that Kibana may still expose the names of other fields that a user does not have access to.

Topic		Replies	Views
Managing roles for Kibana: field level security possible? Elasticsearch elastic-stack-security	3	1464	July 6, 2017
Problems configuring Field Level Security and Kibana Elasticsearch elastic-stack-security	2	867	July 6, 2017
Kibana Shields Kibana	7	1299	July 6, 2017
Issues with Field level security Elasticsearch elastic-stack-security	1	821	July 6, 2017
Shield - The user can see everyhting? Elasticsearch elastic-stack-security	4	952	July 6, 2017

Managing field access from kibana

Related topics