since I have a lot of services and different things writing documents to Elasticsearch I cannot give any kind of access restriction directly to Elasticsearch. Elasticsearch is not accessible to third party people.
Any kind of modification of authentication directly on Elasticsearch could break our application. All services and applications should still be able to connect to Elasticsearch as they did before.
The only interface between customers and Elasticsearch is Kibana. That is why I only want to give different restrictions to users that are accessing Elasticsearch through Kibana. Users of Kibana then would have to authenticate against Elasticsearch. Using version 5.6.7 with Own Home and reverse proxy right now.
Is this possible? How would you do that?