I want to upgrade our elasticsearch instance from 1.6.x to 2.1. There is the new shield configuration.
We use 2 indices. One for search requests from the application with a lot of details and another where we have indexed only the name field for suggest.
Until now we have used this configuration in the access control settings:
default: deny
rules:
- paths:
- '/suggest/_search/template'
action: allow
So it’s possible to disallow all requests to http://host:9200/ except the suggest index:
http://host:9200/suggest/_search/template
I don’t know how I can transform this behaviour to the new shield configuration.
With the default shield configuration I can already access http://host:9200/ because deny seems not to be the default behaviour.