Hi people, i am trying make works this but i have some problems.
first:
[2019-04-09T10:16:10,305][INFO ][t.b.r.a.ACL ] [YVlOB8K] FORBIDDEN by default req={ ID:124630587-1149977786#1119, TYP:MainRequest, CGR:N/A, USR:[no basic auth header], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1, DA:127.0.0.1, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:{content-length=0, Connection=Keep-Alive, User-Agent=Manticore 0.6.4, Host=localhost:9200, Accept-Encoding=gzip,deflate, Content-Type=application/json}, HIS:[::user1_kibana::->[auth_key->false]], [::user2_kibana::->[auth_key->false]], [::user3_kibana::->[auth_key->false]], [::user1::->[auth_key->false]], [::user2::->[auth_key->false]], [::user3 only::->[auth_key->false]], [::KIBANA-SRV::->[auth_key->false]], [Administrator access->[auth_key->false]] }
And when i try access by http i have this message:
{“statusCode”:500,“error”:“Internal Server Error”,“message”:“An internal server error occurred”}
this is my configuration:
readonlyrest:
# enable: true
# response_if_req_forbidden: Forbidden by ReadonlyREST ES plugin
access_control_rules:
- name: "::user1_kibana::"
auth_key: "user1"
indices: [".kibana_user1"]
actions: ["*"]
- name: "::user2_kibana::"
auth_key: "user2"
indices: [".kibana_user2"]
actions: ["*"]
- name: "::user3_kibana::"
auth_key: "user3"
indices: [".kibana_user3"]
actions: ["*"]
- name: "::user1::"
auth_key: user1:user1
actions: ["indices:data/read/*","indices:admin/mappings/*"]
indices: ["*"]
kibana_access: rw
- name: "::user2::"
auth_key: user2:user2
actions: ["indices:data/read/*","indices:admin/mappings/*"]
indices: ["*"]
kibana_access: rw
- name: "::user3 only::"
auth_key: user3:user3
actions: ["indices:data/read/*","indices:admin/mappings/*"]
indices: ["*"]
kibana_access: rw
- name: "::KIBANA-SRV::"
auth_key: kibana:kibana
- name: "Administrator access"
auth_key: administrator:administrator
kibana_access: admin
actions: ["*"]
thanks!