Data streams - forbbiden response

Diana · September 22, 2022, 1:54pm

Hello,

We are using Kibana and ES 7.12.1 with ROR Enterprise 1.39.0. For a user which has admin rights, as indicated in the below ROR block:

  - name: "Full Admin Kibana"
    groups: ["full-admin"]
    indices: ["*"]
    kibana_access: "admin"
  - name: "Full Admin Users"
    groups: ["full-admin"]
    indices: ["*"]
    actions: ["*"]

we try to create data streams and it results in a forbidden result.
More precise, from dev tools, we use the following request:


PUT _data_stream/my-data-stream

and the response:

{
  "error" : {
    "root_cause" : [
      {
        "type" : "forbidden_response",
        "reason" : "forbidden",
        "due_to" : "OPERATION_NOT_ALLOWED"
      }
    ],
    "type" : "forbidden_response",
    "reason" : "forbidden",
    "due_to" : "OPERATION_NOT_ALLOWED"
  },
  "status" : 403
}

There are no forbidden requests in logs which is rather strange.

Also if we perform the same request to the ES server directly the response it’s the same.

Can you please help us?

coutoPL · September 22, 2022, 6:22pm

Hi @Diana

Thanks for reporting this.
It looks like this is the same problem it was reported here.
The good news is that we are currently working on it, so it should be fixed soon. We will let you know!

coutoPL · January 30, 2023, 7:42pm

we have the fix.
If you would like to test it, please let us know what ES version you currently use.
It will be released with ROR 1.47.0

Diana · February 1, 2023, 2:38pm

Hello,

Thanks for the update. We are currently using ES 7.17.2.

coutoPL · February 1, 2023, 7:30pm

@Diana here is the pre-build: ROR 1.47.0-pre3 for ES 7.17.2