Hi guys and girls,
quick question: Is it possible to nest internal SearchGuard roles?
Basically if there is an sg_admins and an sg_finance group, I want the admins to have access to the same documents as sg_finance.
sg_admins:
contains:
- sg_finance
``
ES-Version: 5.6.1
SearchGuard-Version: 5.6.10-19.2
Hi,
sorry for the late reply … No, at the moment you cannot nest roles. But why don’t you simply map the admins to the sg_finance role, in addition to whatever role they already have? Wouldn’t that work? Or do you want to implement some other use case here?
If you want to use an admin user to impersonate as a sg_finance user, e.g. for debugging, you can also use User Impersonation:
On Monday, September 10, 2018 at 10:03:34 AM UTC+2, xenoid wrote:
Hi guys and girls,
quick question: Is it possible to nest internal SearchGuard roles?
Basically if there is an sg_admins and an sg_finance group, I want the admins to have access to the same documents as sg_finance.
sg_admins:
contains:
- sg_finance
``
ES-Version: 5.6.1
SearchGuard-Version: 5.6.10-19.2