Hey,
Just wondering if after creating API Key (/_security/api_key) there is a way to disable/enable it without invalidation?
The other option is to configure the API key to expire after some fixed amount of time at creation time.
1 Like
But I need to have the same ID before and after. Also enable/disable to be controlled by an event and not the clock.
I don't quite understand what this means.
Also enable/disable to be controlled by an event and not the clock.
If expiration is not time based, you must actively invalidate the API key. What kinda event are we talking about here? Is it external to elasticsearch?
No, it is not possible to disable and then re-enable an API Key.
Once it is invalidated it cannot be resurrected, and the only option is to create a new API Key.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.