I have multiple appliances from different customers that report information to my elastic cluster. Documents contains server_id:xxx to identify server it came from. Would be possible to create users and attach them filter server_id:“xxxx” so when that user login in kibana or using APIS he is only able to get documents from that server_id and that he is not possible to remove that filter to see other servers?
sure, this can be accomplished with document level security: GitHub - floragunncom/search-guard-module-dlsfls: DLS/FLS Module for Search Guard 5
···
Am 15.01.2017 um 19:13 schrieb Alberto Gonzalez <agonzalezm@gmail.com>:
I have multiple appliances from different customers that report information to my elastic cluster. Documents contains server_id:xxx to identify server it came from. Would be possible to create users and attach them filter server_id:"xxxx" so when that user login in kibana or using APIS he is only able to get documents from that server_id and that he is not possible to remove that filter to see other servers?
--
You received this message because you are subscribed to the Google Groups "Search Guard" group.
To unsubscribe from this group and stop receiving emails from it, send an email to search-guard+unsubscribe@googlegroups.com.
To post to this group, send email to search-guard@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/search-guard/9bf9919f-812b-4fa0-aefa-0f4006f2d2d0%40googlegroups.com\.
For more options, visit https://groups.google.com/d/optout\.