I have a user that's running some 3rd party code utilizing the python client. It looks like it tries to do a HEAD request on a non-existent index (checking that it isn't there before creating it, I'm told) but instead of getting a 404, it's receiving a 403. The account being used has read, create_index, delete_index, and write on indices with names fitting the pattern it's trying to HEAD for, but it's getting a 'denied' rather than 'not found'. What privilege would need to be added to that account to permit a HEAD operation in addition to GET/PUT/POST/DELETE? I can't find anything specific to it in the docs.
Hi Chris,
This is not because of the HTTP operation used. A GET would have the same results as HEAD.
Your user also needs the view_index_metadata privilege on that index pattern
That took care of it, many thanks!
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.