Elasticsearch 7.5.1 search-guard-7:7.5.1-38.0.0
[2020-01-21T09:20:16,985][INFO ][c.f.s.p.PrivilegesEvaluator] [broker/0] No index-level perm match for User [name=admin, backend_roles=, requestedTenant=null] Resolved [aliases=, indices=[xvlbzgbaicmr], allIndices=[xvlbzgbaicmr], types=[*], originalRequested=[xvlbzgbaicmr], remoteIndices=] [Action [indices:admin/create]] [RolesChecked [SGS_OWN_INDEX]]
[2020-01-21T09:20:16,986][INFO ][c.f.s.p.PrivilegesEvaluator] [broker/0] No permissions for [indices:admin/create]
basic_internal_auth_domain:
description: "Authenticate via HTTP Basic against internal users database"
http_enabled: true
transport_enabled: true
order: 1
http_authenticator:
type: basic
challenge: true
authentication_backend:
type: internal
As I understand user is authenticated but can’t get a role
from sg_ingernat_user.yml
admin:
hash: “$2a$12$azzzzzzzzzzzzzz5JDymv…TOG”
reserved: true
search_guard_roles:
- SGS_ALL_ACCESS
backend_roles: - admin
- broker
description: “Demo admin user”
mappings
SGS_ALL_ACCESS:
reserved: true
users:
- admin
backend_roles: - “admin”
description: “Maps admin to SGS_ALL_ACCESS”
sg_roles
:
index_permissions:
- index_patterns:
- “*”
allowed_actions:
- READ
- WRITE
Here is what I see about user with curl -k -u admin:password -XGET “http://xxx:9200/_searchguard/authinfo?pretty”
{
“user” : “User [name=admin, backend_roles=, requestedTenant=null]”,
“user_name” : “admin”,
“user_requested_tenant” : null,
“remote_address” : “xxxx:58986”,
“backend_roles” : ,
“custom_attribute_names” : ,
“sg_roles” : [
“SGS_OWN_INDEX”
],
“sg_tenants” : {
“admin” : true
},
“principal” : null,
“peer_certificates” : “0”,
“sso_logout_url” : null
}