Sure
{"@timestamp":"2023-11-22T10:53:34.741Z", "log.level": "INFO", "message":"\u001B[35mFORBIDDEN by { name: 'disable indexes for kibana users', policy: FORBID, rules: [proxy_auth,ldap_authorization,indices] req={ ID:573456017-1779307375#47599, TYP:GetIndexTemplatesRequest, CGR:stg-log-admins, USR:testuser, BRS:true, KDX:null, ACT:indices:admin/template/get, OA:10.244.170.22/32, XFF:10.244.245.2, DA:10.244.101.98/32, IDX:<N/A>, MET:GET, PTH:/_template, CNT:<N/A>, HDR:Accept-Charset=utf-8, Authorization=<OMITTED>, Host=stg-elasticsearch-elk:9200, accept=application/vnd.elasticsearch+json; compatible-with=8,text/plain, connection=close, content-length=0, cookie=_lfa=LF1.1.abd9d1c8d158012c.1660730056916; ajs_anonymous_id=%22b5ec835f-695a-4ce0-a53c-677b05cde6dc%22; __hssrc=1; fs_uid=#VZSWZ#c3140c70-66aa-4771-9780-0252308e834d:390cd91b-45ba-4f8c-b347-3f366ada40d9:1691657100920::1#/1723132111, elastic-apm-traceparent=00-69016b5662c3adfa62121680c603b207-0ebb9eb3ebe42bb1-00, traceparent=00-69016b5662c3adfa62121680c603b207-0ebb9eb3ebe42bb1-00, tracestate=es=s:0, user-agent=Kibana/8.7.1, x-elastic-client-meta=es=8.6.0p,js=16.19.1,t=8.3.1,hc=16.19.1, x-elastic-product-origin=kibana, x-forwarded-for=10.244.245.2, x-forwarded-user=testuser, x-opaque-id=unknownId, x-ror-correlation-id=ba0c270b-cc44-4ee7-9934-942f018f036e, x-ror-kibana-request-method=get, x-ror-kibana-request-path=/s/default/api/index_management/index_templates, HIS:[local user: elasticsearch-> RULES:[auth_key_sha256->false] RESOLVED:[template=GET(*)]], [local user: kibana-> RULES:[auth_key_sha256->false] RESOLVED:[template=GET(*)]], [local user: logstash-> RULES:[auth_key_sha256->false] RESOLVED:[template=GET(*)]], [disable indexes for kibana users-> RULES:[proxy_auth->true, ldap_authorization->true, indices->true] RESOLVED:[user=testuser;group=stg-log-admins;av_groups=stg-log-admins;template=GET(default)]], }\u001B[0m", "ecs.version": "1.2.0","service.name":"ES_ECS","event.dataset":"elasticsearch.server","process.thread.name":"scala-execution-context-global-41","log.logger":"tech.beshu.ror.accesscontrol.logging.AccessControlLoggingDecorator","elasticsearch.cluster.uuid":"kF-zmkw6Q4GCtIrRUts6wQ","elasticsearch.node.id":"ruvx8uWgQmi0k1G03xmqsA","elasticsearch.node.name":"stg-elasticsearch-elk-0","elasticsearch.cluster.name":"stg-elasticsearch"}
I suspect it is due to the UI tab for creation templates includes all templates (with forbidden also) and because I am not able see some templates that’s why I cannot get in this UI tab.