GET _snapshot permission issue

Hi,

ror enterprise 1.19.5
elastic/kibana 6.7.2

we upgraded ror from 1.19.2 -> 1.19.5 and _snapshot endpoint is not allowed anymore, not even with full permissions. Repository creation and _cat/snapshots works. The strange thing is that ROR doesn’t even log the forbidden message to log, I only see it from client side.

config:
readonlyrest:
response_if_req_forbidden: Forbidden by ReadonlyREST ES plugin
access_control_rules:
- name: “elastic”
auth_key_sha256: “”
type: allow

message:
{"error":{"root_cause":[{"reason":"Forbidden by ReadonlyREST ES plugin","due_to":["OPERATION_NOT_ALLOWED"]}],"reason":"Forbidden by ReadonlyREST ES plugin","due_to":["OPERATION_NOT_ALLOWED"],"status":403}}

it’s already fixed but not released yet (we plan to do it on weekend).

You can test it without our pre build:

https://readonlyrest-data.s3-eu-west-1.amazonaws.com/build/1.20.0-pre7/readonlyrest-1.20.0-pre7_es6.7.2.zip?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIA5SJIWBO54AGBERLX/20200619/eu-west-1/s3/aws4_request&X-Amz-Date=20200619T114750Z&X-Amz-Expires=604800&X-Amz-SignedHeaders=host&X-Amz-Signature=1998383b2e49c1d3660ff80f24086615ecabf49bce107a1ab296dca185e043d4