Cannot PUT _index_template/template_1

Hi
I am using ES 7.9.0 with ROR 1.22.1_es7.9.0 and i am not able to create/update index templates using PUT _index_template API.

Here is the readonlyrest.yml:

readonlyrest:
enable: true
response_if_req_forbidden: “Forbidden: restricted access area”

access_control_rules:


- name: “::ADMIN::”
auth_key: admin:admin
type: allow

Here is the elasticsearch log:

[2020-09-01T19:49:12,761][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [node-1] ALLOWED by { name: ‘::ADMIN::’, policy: ALLOW, rules: [auth_key] req={ ID:1612939774-1405143#931225, TYP:Request, CGR:N/A, USR:admin, BRS:false, KDX:null, ACT:indices:admin/index_template/put, OA:127.0.0.1/32, XFF:x-forwarded-for=127.0.0.1, DA:127.0.0.1/32, IDX:te*,bar*, MET:PUT, PTH:/_index_template/template_1, CNT:<OMITTED, LENGTH=520.0 B> , HDR:Authorization=, Connection=close, content-length=520, content-type=application/json, host=localhost, x-forwarded-for=127.0.0.1, x-forwarded-host=my.domain.com, x-forwarded-port=49926, x-forwarded-proto=http, HIS:[::KIBANA_RW::-> RULES:[auth_key->false], RESOLVED:[indices=te*,bar*]], [::KIBANA_MNTR::-> RULES:[auth_key->false], RESOLVED:[indices=te*,bar*]], [::USER::-> RULES:[auth_key->false], RESOLVED:[indices=te*,bar*]], [::USER_UPDT::-> RULES:[auth_key->false], RESOLVED:[indices=te*,bar*]], [::EDC_USER::-> RULES:[auth_key->false], RESOLVED:[indices=te*,bar*]], [::EDC_USER_UPDT::-> RULES:[auth_key->false], RESOLVED:[indices=te*,bar*]], [::ADMIN::-> RULES:[auth_key->true], RESOLVED:[user=admin;indices=te*,bar*]] }
[2020-09-01T19:49:12,761][ERROR][t.b.r.e.r.c.t.ReflectionBasedIndicesEsRequestContext] [node-1] [1612939774-1405143#931225] Cannot update Request request. We’re using reflection to modify the request indices and it fails. Please, report the issue.

Can you please help figuring this out?

PS With these same settings I am able to DELETE, GET the templates. Also, if I use a restricted user I get the “Forbidden: restricted access area” message which makes me think that it is not a configuration issue but rather a defect in ROR.

It looks like we should directly support _index_template API. I’ll add it to our backlog. Let you know when it finished.