Prevent searching for specific field with query_string query

Hello Forum,

is it possible to somehow limit / filter the fields that can be searched using a query_string query?

My use-case is that I have an index which contains privileged information and I want to expose a subset of that data to users. Filtering the output from ES is easy enough, but how can I disallow a user to search for one of the "hidden" fields using the query string query?


x-pack security module (commercial plugin) supports that OOTB.

Thanks, by the lack of additional replies I'm guessing this is the only way to achieve that.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.