So I have a somewhat unusual use case that I am wondering if ES Security can handle.
I have documents indexed into my ES cluster and I want to set up security such that:
A) Documents and Fields are searched even if the user doesn't have access to a document. Basically if the user searches for "water" and we have a document about water which they are not allowed access to. I want to show the search result so they can request access to the document.
Also, it wasn't clear to me from the documentation how the roles stack. So I want a field to require:
(ROLE_A AND ROLE_B) OR ROLE_C does xpack security support that?