/usr/share/elasticsearch/plugins/opendistro security/securityconfig/roles.yml

1 개요[ | ]

/usr/share/elasticsearch/plugins/opendistro security/securityconfig/roles.yml

_meta:
  type: "roles"
  config_version: 2

# Restrict users so they can only view visualization and dashboard on kibana
kibana_read_only:
  reserved: true

# The security REST API access role is used to assign specific users access to change the security settings through the REST API.
security_rest_api_access:
  reserved: true
 
# Allows users to view alerts
alerting_view_alerts:
  reserved: true
  index_permissions:
    - index_patterns:
      - ".opendistro-alerting-alert*"
      allowed_actions:
        - read 

# Allows users to view and acknowledge alerts
alerting_crud_alerts:
  reserved: true
  index_permissions:
    - index_patterns:
      - ".opendistro-alerting-alert*"
      allowed_actions:
       - crud 

# Allows users to use all alerting functionality
alerting_full_access:
  reserved: true
  index_permissions:
    - index_patterns:
      - ".opendistro-alerting-config"
      - ".opendistro-alerting-alert*"
      allowed_actions:
        - crud

2 같이 보기[ | ]

/usr/share/elasticsearch/plugins/opendistro security/securityconfig/roles_mapping.yml

3 참고[ | ]

https://github.com/opendistro-for-elasticsearch/security/blob/master/securityconfig/roles.yml