[2023-12-21T17:58:23,071][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1012664072-1386116225#3874, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d72127f9-5a8b-4684-afce-853bf1d45d37, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:23,127][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1448485226-183372015#3875, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:23,133][WARN ][o.e.t.ThreadPool         ] [ubuntu] timer thread slept for [1d/86437812ms] on absolute clock which is above the warn threshold of [5000ms]
[2023-12-21T17:58:23,314][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:92607974-512928979#3876, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:23,359][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2032702234-1386116225#3877, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cbf6ad7d-c990-4b5f-aa18-6669b51ac6a2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:23,363][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:58410400-779901452#3878, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:23,461][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:629378852-403597517#3879, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:23,522][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1090611241-1386116225#3881, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2699f58a-c85e-4230-bb30-608aae6ddee2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:23,527][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:232908351-883073544#3882, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:23,608][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1593961553-1386116225#3883, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aa19e521-5f51-4414-936c-f2143b56a0b7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:23,613][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:361469880-400120616#3884, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:23,692][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:910825785-1386116225#3885, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f4c41900-c056-42fa-a2f8-c15f1b37b5c7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:23,713][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1727596741-797337077#3886, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:23,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1926986550-1386116225#3887, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9eaa513f-93a7-4ae3-87c7-295b5146f109, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:23,826][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:348006277-984591095#3888, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:23,834][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2131242040-18433677#3889, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:23,918][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:639289754-1386116225#3890, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=de1b0506-5bbb-4055-867b-bd642c9b4dfe, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:23,922][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:263259300-1784060120#3891, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:24,011][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:770273143-1386116225#3892, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8a598ab0-0a31-4bc8-a92b-d85c819c2a30, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,015][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1565472073-1524403808#3893, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:24,100][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:68308411-1386116225#3894, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e74b6d05-f0a5-4748-b023-dfff90955b85, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,107][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1650854041-1185385697#3895, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:24,186][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2025240027-1386116225#3896, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3851f5c5-1b42-4548-9c8e-a5d794e0989d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,202][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1851740387-1018146673#3897, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:24,282][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1184230529-1386116225#3898, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4f772c14-bbbf-4c1f-802a-058daefc9e2f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,287][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:188776933-529272870#3899, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:24,373][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1578754177-1386116225#3900, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=62d574d6-bdfb-4ed0-a2d4-183d69988b6d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,376][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:931266087-952180379#3901, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:24,394][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1812895862-722557312#3902, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:24,460][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:976011436-392374057#3909, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:24,491][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1202926725-1386116225#3915, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e325cecb-32aa-400b-a885-2325b1c3cdfb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,496][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1447020826-1853318460#3916, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:24,559][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:183692015-833697188#3924, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:24,589][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1584565167-12295160#3926, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=5757.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=5757, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:24,611][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:686093804-1386116225#3929, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=21e47842-b762-47e5-ada4-9f10c6f71310, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,614][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2112826185-931854504#3930, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:24,732][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1798488570--53075430#3933, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,740][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1685455589-1623705665#3936, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/telemetry:telemetry, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,741][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:15213385-2108170175#3938, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/telemetry:telemetry, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,749][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1759965620--52387744#3935, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:58:24,752][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:873686436-977753696#3941, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/telemetry:telemetry, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,755][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:662660693-944560955#3943, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=396.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=396, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,756][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:698174405-784485797#3940, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=500.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=500, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,769][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2009471863-922061997#3945, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/telemetry:telemetry, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,769][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2026588255-1386116225#3946, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=632daa56-5ab9-4fb4-b76e-cbd21ea290bd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,770][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:186460203-1218284014#3948, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/endpoint:user-artifact-manifest:endpoint-manifest-v1, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,780][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:264715817-526239088#3950, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=700.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=700, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,786][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1465531559--1652467695#3952, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana*, MET:POST, PTH:/.kibana*/_search, CNT:<OMITTED, LENGTH=118.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=118, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana*]], }
[2023-12-21T17:58:24,789][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1471054970-197074196#3956, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:24,802][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:357387160-1276117247#3957, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.fleet-agents, MET:POST, PTH:/.fleet-agents/_search, CNT:<OMITTED, LENGTH=2.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.fleet-agents]], }
[2023-12-21T17:58:24,805][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2012439914-1283968586#3958, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.ds-metrics-endpoint.policy*, MET:POST, PTH:/.ds-metrics-endpoint.policy*/_search, CNT:<OMITTED, LENGTH=265.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=265, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.ds-metrics-endpoint.policy*]], }
[2023-12-21T17:58:24,813][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:689190284--2090357769#3959, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.ds-metrics-endpoint.metrics-*, MET:POST, PTH:/.ds-metrics-endpoint.metrics-*/_search, CNT:<OMITTED, LENGTH=263.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=263, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.ds-metrics-endpoint.metrics-*]], }
[2023-12-21T17:58:24,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1401245827-1703221932#3960, TYP:IndexRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/index, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:PUT, PTH:/.kibana_7.17.15/_create/exception-list-agnostic:endpoint_trusted_apps, CNT:<OMITTED, LENGTH=569.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=569, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,822][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:451644431--973510888#3963, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.logs-endpoint.diagnostic.collection-*, MET:POST, PTH:/.logs-endpoint.diagnostic.collection-*/_search, CNT:<OMITTED, LENGTH=150.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=150, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.logs-endpoint.diagnostic.collection-*]], }
[2023-12-21T17:58:24,826][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1985962509--268486008#3964, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=700.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=700, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,839][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:254223629-1111100991#3966, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=3310.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=3310, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:24,867][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:83327363--943850112#3969, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=600.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=600, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,870][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:154483738-45708871#3971, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=697.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=697, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,941][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:849654192--133868641#3975, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=603.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=603, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,947][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:799906573-1386116225#3977, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=80e93250-a201-449e-9db9-a2018fd2736e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,952][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1846501143-1836304615#3978, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:24,980][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1944891071--644909183#3979, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=595.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=595, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,987][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1683138627-1890694201#3981, TYP:IndexRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/index, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:PUT, PTH:/.kibana_7.17.15/_create/exception-list-agnostic:endpoint_trusted_apps, CNT:<OMITTED, LENGTH=569.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=569, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:24,995][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:66485816-1054358628#3984, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=592.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=592, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:25,006][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:368685487-1679295459#3986, TYP:IndexRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/index, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:PUT, PTH:/.kibana_7.17.15/_create/exception-list-agnostic:endpoint_trusted_apps, CNT:<OMITTED, LENGTH=569.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=569, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:25,015][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:435512101-2070694536#3989, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=601.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=601, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:25,042][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:692242845-1903063507#3991, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=1000.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=1000, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:25,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:209934294-1386116225#3996, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8f16d71c-db8b-4dd6-9f58-e724009812aa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:25,073][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1478684047-1522597809#3997, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:25,138][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2141699311-1386116225#3998, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=af221fdc-6640-4171-8a31-a38bbd6dbae8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:25,143][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1688953532-490200494#3999, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:25,254][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1998020290-1386116225#4000, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f1276b35-214e-4184-a91b-7a2585a98805, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:25,258][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1387660562-257316226#4001, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:25,375][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:883021534-1386116225#4002, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d59eb151-f6dd-44b5-9640-4590bfc527cd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:25,385][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:819423318-330176847#4003, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:25,536][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:579476091-1386116225#4004, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=41abf8b8-1496-47b3-ac47-570459089dac, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:25,539][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1901199549-1276485968#4005, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:25,623][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1191961948-613218451#4006, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=567.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=567, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:25,671][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1619560961-1386116225#4009, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cd32a935-eb60-4950-9784-a40b2d3ed839, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:25,678][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:765737372-386469328#4010, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:25,820][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1705149576-1386116225#4013, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=41f05a4b-25c9-4f8b-b2d9-907adb87f1ad, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:25,824][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1105121983-1304067009#4014, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:25,936][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1418307020-1386116225#4015, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=91724aa2-386c-4c46-a59e-67439256e365, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:25,941][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1257486575-1287004746#4016, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:25,949][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1169834839-608466321#4018, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:26,057][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:30371595-1386116225#4019, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3ebc469d-16c9-4ef8-9157-05ac0343ba8f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:26,061][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1023231296-2146855468#4020, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:26,155][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:410066235-1386116225#4021, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6d39bb79-e3a7-4b0f-b697-b7f72e9254a7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:26,161][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:967813626-1975784425#4022, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:26,278][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1335032346-1386116225#4023, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2bae52b9-c05b-42ce-a1ff-60238fdd2287, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:26,287][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1311966158-456985274#4024, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:26,374][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:852174288-1386116225#4025, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=473501b1-7458-4dbd-aeec-02f2761fb453, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:26,377][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:806287573-108479016#4026, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:26,463][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1216787381-1386116225#4027, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5c04e6fb-fb87-43ef-8ed9-b4567e9a519f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:26,467][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1351359579-588756010#4028, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:26,581][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1477371739-1386116225#4029, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0ddf7f68-59e3-4961-acbd-83cc55f6b677, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:26,585][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1687693517-1480736884#4030, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:26,689][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:9733226-1386116225#4031, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8425286a-93d1-44f2-8f88-ff527f0d0026, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:26,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1755116003-1991552574#4032, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:26,782][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1805308941-1386116225#4033, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a4b17537-baa2-45fb-a32f-0e031014f1b6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:26,786][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1406086757-423921032#4034, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:26,859][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:385669584-1386116225#4035, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=650f9e85-4b95-4312-b4d2-70ca703b883c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:26,864][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:383282346-1162802449#4036, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:26,937][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:971493483-1386116225#4037, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8b39bec2-2ec9-4bc8-b24d-2037c7617af7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:26,948][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1876445147-1376642925#4038, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:27,043][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:494187753-1386116225#4039, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d66bc9cc-674e-4585-98dc-7a7cdac6efee, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:27,051][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:419076296-628175413#4040, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:27,152][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:552808950-1386116225#4041, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d03e2c0c-b974-4d30-912e-10b0d99b1a5f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:27,156][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:165485197-871343291#4042, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:27,252][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1345408609-1386116225#4043, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ba0ec394-e82d-47ba-b2b7-d4c3f9555ae3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:27,258][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2141148886-1406350218#4044, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:27,359][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1465034884-1386116225#4045, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b5f58e0a-1957-4735-acce-b1efe6f03d5b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:27,363][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:842744335-2084561551#4046, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:27,398][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:210316080-1977992528#4047, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:27,519][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1689637224-1386116225#4053, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5c6f4e5e-5d0e-4e3a-99a2-aa1a5c9144d1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:27,617][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2031297080-865468915#4056, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:27,736][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1158202567-1386116225#4066, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ebc56c83-2c65-4570-a1cf-e0bc717d52db, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:27,740][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1540687540-1484631259#4067, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:27,747][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1947645-833697188#4068, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:27,819][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1192330897-941396793#4070, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:27,867][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:949962510-990204023#4077, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=4746.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4746, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:27,869][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:592747634-1386116225#4080, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=16d9119d-1b7a-422f-8296-a476b3bfe7ea, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:27,882][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:261444100-1157326953#4081, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:28,030][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1217790213-1899672808#4084, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/.kibana_task_manager_7.17.15/_search, CNT:<OMITTED, LENGTH=1701.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=1701, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:28,038][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2100852664-2036899231#4086, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana, MET:POST, PTH:/.kibana/_search, CNT:<OMITTED, LENGTH=592.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=592, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana]], }
[2023-12-21T17:58:28,040][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1071507494-785023298#4088, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/apm-indices:apm-indices, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:28,040][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:404926100--221325085#4089, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana, MET:POST, PTH:/.kibana/_search, CNT:<OMITTED, LENGTH=1413.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=1413, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana]], }
[2023-12-21T17:58:28,043][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:529663726--225292632#4091, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=511.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=511, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:28,050][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:984769130--403889845#4093, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana, MET:POST, PTH:/.kibana/_search, CNT:<OMITTED, LENGTH=694.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=694, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana]], }
[2023-12-21T17:58:28,056][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:622194037-1386116225#4095, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b29863a1-b91b-4608-8e55-f0659e2b61a5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:28,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1445733303-1197168660#4097, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana, MET:POST, PTH:/.kibana/_search, CNT:<OMITTED, LENGTH=4996.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4996, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana]], }
[2023-12-21T17:58:28,071][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:684630349-660895692#4099, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:28,105][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1746340733-1599313179#4100, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana, MET:POST, PTH:/.kibana/_search, CNT:<OMITTED, LENGTH=2650.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2650, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana]], }
[2023-12-21T17:58:28,133][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:945504897--491224640#4102, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana, MET:POST, PTH:/.kibana/_search, CNT:<OMITTED, LENGTH=1253.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=1253, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana]], }
[2023-12-21T17:58:28,193][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1113654361-1942788604#4104, TYP:GetTransformStatsAction$Request, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/transform/stats/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_transform/endpoint.metadata_*/_stats, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:28,232][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:869998451-361772246#4106, TYP:DeleteByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/delete/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana, MET:POST, PTH:/.kibana/_delete_by_query, CNT:<OMITTED, LENGTH=125.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=125, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana]], }
[2023-12-21T17:58:28,235][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1891985785-1338509373#4109, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*, MET:POST, PTH:/traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=112.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=112, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*]], }
[2023-12-21T17:58:28,298][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:261069984-1682193061#4110, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=971.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=971, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:28,351][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1885770879--537833009#4113, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=192.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=192, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:28,375][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:250404984-77126293#4114, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=426.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=426, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:28,399][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1493292930-1386116225#4118, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a2a4b3a0-d1b7-4941-903d-da51e35bd958, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:28,418][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:724805035-1383917318#4115, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=84.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=84, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:28,424][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1574900089-878302618#4119, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:28,435][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1479169777-1385785063#4120, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*, MET:POST, PTH:/traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=351.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=351, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*]], }
[2023-12-21T17:58:28,481][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:494853699-1376262397#4127, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*, MET:POST, PTH:/logs-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=158.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=158, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*]], }
[2023-12-21T17:58:28,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1501521151--1265668416#4128, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana, MET:POST, PTH:/.kibana/_search, CNT:<OMITTED, LENGTH=77.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=77, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana]], }
[2023-12-21T17:58:28,496][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1876397190-149418656#4130, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*, MET:POST, PTH:/logs-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=116.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=116, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*]], }
[2023-12-21T17:58:28,509][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1698746963--1403639439#4131, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*, MET:POST, PTH:/logs-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=136.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=136, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*]], }
[2023-12-21T17:58:28,534][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:245859454-898641304#4132, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:metrics-apm*,apm-*, MET:POST, PTH:/metrics-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=159.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=159, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=metrics-apm*,apm-*]], }
[2023-12-21T17:58:28,545][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:744313289-2143116152#4133, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=2314.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2314, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:28,559][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:478989462--647128755#4136, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:metrics-apm*,apm-*, MET:POST, PTH:/metrics-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=117.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=117, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=metrics-apm*,apm-*]], }
[2023-12-21T17:58:28,590][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:783953677-2094780446#4138, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:metrics-apm*,apm-*, MET:POST, PTH:/metrics-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=137.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=137, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=metrics-apm*,apm-*]], }
[2023-12-21T17:58:28,591][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1993862646-557681001#4137, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:28,606][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1756356618--514042168#4140, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*, MET:POST, PTH:/traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=157.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=157, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*]], }
[2023-12-21T17:58:28,630][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:80482542-2126766312#4141, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:28,657][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:926030491-1386116225#4145, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9ecafc8c-1052-4143-a9a8-f16ebd865f83, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:28,667][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2103181564--1715902189#4146, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*, MET:POST, PTH:/traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=115.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=115, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*]], }
[2023-12-21T17:58:28,673][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2047458261-505843482#4147, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:28,677][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:122592189-1026007012#4148, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*, MET:POST, PTH:/traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=135.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=135, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*]], }
[2023-12-21T17:58:28,681][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2020806174--524174011#4149, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*, MET:POST, PTH:/traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=164.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=164, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*]], }
[2023-12-21T17:58:28,696][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1867194026--1023492362#4150, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*, MET:POST, PTH:/traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=122.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=122, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*]], }
[2023-12-21T17:58:28,699][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2130966678-1489163055#4151, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2213.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2213, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:28,707][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1921890399-1718416839#4152, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*, MET:POST, PTH:/traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=142.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=142, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*]], }
[2023-12-21T17:58:28,727][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:32331456-1841034525#4153, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:apm-*, MET:POST, PTH:/apm-*/_search, CNT:<OMITTED, LENGTH=163.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=163, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=apm-*]], }
[2023-12-21T17:58:28,743][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1628355357--242204656#4154, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:apm-*, MET:POST, PTH:/apm-*/_search, CNT:<OMITTED, LENGTH=121.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=121, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=apm-*]], }
[2023-12-21T17:58:28,748][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1443317720--1795262751#4155, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:apm-*, MET:POST, PTH:/apm-*/_search, CNT:<OMITTED, LENGTH=141.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=141, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=apm-*]], }
[2023-12-21T17:58:28,755][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1230459399-1813946130#4156, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:apm-*, MET:POST, PTH:/apm-*/_search, CNT:<OMITTED, LENGTH=162.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=162, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=apm-*]], }
[2023-12-21T17:58:28,759][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:585582267-2112226171#4157, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:apm-*, MET:POST, PTH:/apm-*/_search, CNT:<OMITTED, LENGTH=120.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=120, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=apm-*]], }
[2023-12-21T17:58:28,771][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:908445609-559168076#4158, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:apm-*, MET:POST, PTH:/apm-*/_search, CNT:<OMITTED, LENGTH=140.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=140, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=apm-*]], }
[2023-12-21T17:58:28,777][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1525710642--1165530186#4159, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.apm-agent-configuration, MET:POST, PTH:/.apm-agent-configuration/_search, CNT:<OMITTED, LENGTH=49.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=49, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.apm-agent-configuration]], }
[2023-12-21T17:58:28,779][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:636585780-1386116225#4160, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=121eed20-4d51-4f37-8572-5fa7b50041c1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:28,785][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1810133774-341749527#4162, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:28,872][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1644161500-1218317040#4163, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:28,915][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:11169006-1386116225#4164, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=00062fcd-fbbd-4d4a-95ce-f3d322592e49, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:28,918][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1642941947-2143480083#4165, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:28,970][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:692373761-831426572#4166, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:29,000][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1194567057-1386116225#4167, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=068f325b-69b3-4e13-81da-52e81ad72279, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:29,017][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:338525317-522484078#4168, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:29,094][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2009498088-1386116225#4169, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a2426096-8d59-4c30-926f-3deb0e99df6d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:29,106][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:755219884-1379218909#4170, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:29,168][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:697176347--1369129214#4171, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=191.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=191, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,193][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1860622844-1386116225#4172, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd9ef5f0-df1c-476d-b9f4-d3fd6b64f249, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:29,210][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1893655287-605132865#4173, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=187.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=187, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,216][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:762108937-489876181#4174, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:29,255][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2136813868-940538641#4175, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=194.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=194, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,260][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:982958139-364027960#4176, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=189.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=189, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,274][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1665734843--2141741419#4177, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=192.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=192, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,287][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1686603647--2048074411#4178, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=191.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=191, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,297][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1925516946--1595488765#4179, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=188.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=188, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,313][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2120130537-1972242826#4180, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=191.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=191, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,321][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:214963627-1386116225#4181, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=39877802-1872-4593-9ad6-0090e45f8126, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:29,330][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:801865486-2141125446#4182, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:29,339][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1442434137--235056366#4183, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=189.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=189, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,346][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:220009958--2062482#4184, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=191.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=191, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,355][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1467362121-821457430#4185, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=189.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=189, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,367][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1574786969--2057112392#4186, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=202.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=202, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,379][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1180550015--1216531038#4187, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=205.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=205, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,395][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:596270199--632592301#4188, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=205.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=205, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,420][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1161828140-2111013642#4189, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=201.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=201, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,448][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1922494850--936604845#4190, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=203.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=203, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,467][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1517847188-414101613#4191, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=205.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=205, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,478][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:727716936--1240906181#4192, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=202.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=202, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,483][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1851559807--393532364#4193, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=205.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=205, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,490][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:730036695--1204640669#4194, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=203.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=203, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,502][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:904995345--794309726#4195, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=204.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=204, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,508][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:513319603-158101478#4196, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,traces-apm*,metrics-apm*, MET:POST, PTH:/logs-apm*,apm-*,traces-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=204.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=204, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,traces-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,548][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1419717215-1386116225#4198, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a1ff619e-d552-4f16-bd60-3a7623aee5df, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:29,568][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1491992618-740894518#4199, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:29,536][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:339079528--2085557713#4197, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*,logs-apm*, MET:POST, PTH:/traces-apm*,apm-*,traces-apm*,apm-*,logs-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=102.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=102, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*,logs-apm*]], }
[2023-12-21T17:58:29,605][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:617115640--191859355#4200, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*, MET:POST, PTH:/logs-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=304.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=304, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*]], }
[2023-12-21T17:58:29,626][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:404037850--339159569#4201, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*, MET:POST, PTH:/traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=320.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=320, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*]], }
[2023-12-21T17:58:29,655][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1128502353--1867445840#4202, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*, MET:POST, PTH:/traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=208.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=208, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*]], }
[2023-12-21T17:58:29,689][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2026275808--1463366046#4203, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:traces-apm*,apm-*,logs-apm*,metrics-apm*, MET:POST, PTH:/traces-apm*,apm-*,logs-apm*,apm-*,metrics-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=162.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=162, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=traces-apm*,apm-*,logs-apm*,metrics-apm*]], }
[2023-12-21T17:58:29,719][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:610643262-1386116225#4204, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=64924158-4f37-41c1-91e1-6c00bd3fc00b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:29,725][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:521569455-1138221014#4205, TYP:GetJobsAction$Request, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/ml/job/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_ml/anomaly_detectors/apm-*,*-high_mean_response_time, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:29,728][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:159757887-566364277#4207, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:29,757][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:783578215--126689204#4209, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=985.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=985, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,773][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1904905468-1847572875#4210, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=981.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=981, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1033881774--2111988645#4211, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=988.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=988, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,831][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:377946190-1606467970#4212, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=983.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=983, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,845][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:454908341--899301409#4213, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=986.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=986, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,864][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1045809990--805634401#4214, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=985.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=985, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,869][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1152883692-1386116225#4215, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e46e0950-1ed9-43c5-9c21-d66c32df114e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:29,878][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1303564825-1772270046#4216, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:29,914][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2102177434--353048755#4217, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=982.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=982, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,922][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1407665165--1080284460#4218, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=985.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=985, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,954][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:575045429-1007383644#4219, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=983.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=983, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,967][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:853123008-1240377528#4220, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=985.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=985, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,974][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:712630143-2063897440#4221, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=983.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=983, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,983][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1129783569--814672382#4222, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=996.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=996, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:29,991][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1383678361-25908972#4223, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=999.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=999, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:30,010][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:853785845-609847709#4224, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=999.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=999, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:30,019][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1485999423-1386116225#4225, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7955c900-d5dd-4d28-9981-39124da60a34, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:30,019][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:713971385--941513644#4226, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=995.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=995, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:30,031][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:545396026-2080057641#4227, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:30,032][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:18437322-305835165#4228, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:30,036][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2067755975-1656541623#4229, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=999.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=999, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:30,053][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1419017281-1533829#4230, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=996.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=996, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:30,057][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:209179636-848907646#4231, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=999.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=999, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:30,062][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1199798708-37799341#4232, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:30,079][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1193446344-448130284#4233, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=998.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=998, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:30,087][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:816025881-1400541488#4234, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:logs-apm*,apm-*,metrics-apm*,traces-apm*, MET:POST, PTH:/logs-apm*,apm-*,metrics-apm*,apm-*,traces-apm*,apm-*/_search, CNT:<OMITTED, LENGTH=998.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=998, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,apm-*,metrics-apm*,traces-apm*]], }
[2023-12-21T17:58:30,094][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:41487498-1592499112#4235, TYP:IndicesStatsRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:monitor/stats, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:apm-*,logs-apm*,.apm-agent-configuration,traces-apm*,metrics-apm*, MET:GET, PTH:/.apm-agent-configuration,logs-apm*,apm-*,metrics-apm*,apm-*,apm-*,apm-*,traces-apm*,apm-*,traces-apm*,apm-*/_stats, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=logs-apm*,metrics-apm*,traces-apm*,apm-*,.apm-agent-configuration]], }
[2023-12-21T17:58:30,112][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:222574454--90654385#4237, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:*, MET:POST, PTH:/_search, CNT:<OMITTED, LENGTH=240.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=240, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=*]], }
[2023-12-21T17:58:30,204][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:558056606-853393034#4249, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:*, MET:POST, PTH:/_search, CNT:<OMITTED, LENGTH=394.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=394, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=*]], }
[2023-12-21T17:58:30,267][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1278959145-806219460#4261, TYP:IndexRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/index, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:PUT, PTH:/.kibana_7.17.15/_doc/apm-telemetry:apm-telemetry, CNT:<OMITTED, LENGTH=1911.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=1911, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:30,338][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:120277961-1386116225#4264, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=edd596e1-c263-45df-9e48-26b12d04db9f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:30,342][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1260180838-2064069370#4265, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:30,401][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:712880369-381565069#4266, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:30,444][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1846339043-1386116225#4269, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=35487d6e-ac0a-4781-909a-aab6ab278b6e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:30,453][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1111504256-92143361#4274, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:30,511][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:706934947-259490272#4275, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6418.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6418, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:30,592][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1628452993-1386116225#4288, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c794e66f-8cab-48ff-a424-6b9f1460bd45, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:30,598][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1026637252-15412513#4289, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:30,712][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:866174045-822381061#4292, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4429.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4429, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:30,770][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1402222232-1386116225#4294, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c802e90c-ec22-47c9-b51b-65e66982d007, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:30,777][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1736441395-1042568664#4295, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:30,874][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:185855085-2042706785#4298, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:30,907][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:549657361-2133009166#4301, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=419, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:30,919][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1641532428-1386116225#4304, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=21a44630-a6b3-4cd4-b3f2-dafc15a11795, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:30,941][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1769992405-920344816#4305, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:30,947][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2109857659-1764045866#4306, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:31,055][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:433000540--52387744#4311, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:58:31,113][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1185355973-896413037#4313, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:31,120][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1974131598-1386116225#4316, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6677ce30-97aa-4758-9b1c-c04d0b6d505e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:31,125][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:251188905-1755692843#4317, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:31,214][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:335968407-1386116225#4320, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=36a3c8ad-2b5f-4121-b259-bd208715faf5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:31,218][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1780034530-785933961#4321, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:31,312][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:219000439-1386116225#4322, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d0aeff12-eb5a-49af-96c2-ecd355ab672a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:31,317][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:719891841-151901445#4323, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:31,465][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1686898307-1386116225#4324, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f2231727-0ce6-4782-9319-4d1ad16dcc0d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:31,470][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:205194834-134717768#4325, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:31,560][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1787481235-1386116225#4326, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=de639b0c-5f81-4a4b-a5e0-b83a627707bd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:31,568][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1597123947-1256729231#4327, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:31,700][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1319103715-1386116225#4328, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b51b0fc7-b2c3-4c13-a010-3544b7dde448, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:31,707][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:929924342-111447564#4329, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:31,805][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:504253400-1386116225#4330, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ca9a4ad2-a7bc-4368-8129-6fca3867671a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:31,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1909887684-717746748#4331, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:31,906][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:137485702-1386116225#4332, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1c7fb2cc-dbd0-467c-a87c-5f4ed9171835, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:31,915][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1686968275-562620724#4333, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:32,015][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:877373739-1386116225#4334, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=58cdd8e9-2c08-4a07-abb7-f327b4e55c0f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:32,025][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:848334793-1051665863#4335, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:32,097][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1476967023-1386116225#4336, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a6323aa4-dfe5-40f0-9151-cd0df751d592, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:32,107][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:836981428-121339270#4337, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:32,215][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1081991611-1386116225#4338, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=38f6ed53-e542-440e-93ad-a9d19ac61611, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:32,220][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1564205081-1986424824#4339, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:32,299][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:711851007-1386116225#4340, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4578a6c1-a919-4f06-926d-568b5a9a97e5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:32,303][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:87205680-126592167#4341, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:32,392][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1121391105-1386116225#4342, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3f08f16a-9b82-4ed1-a4a7-8fc40833e920, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:32,397][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:127970215-398169924#4343, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:32,475][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1297069960-1386116225#4344, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=431c9998-7025-4a4d-ae8c-a99fcc040f3f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:32,480][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:938668858-898472944#4345, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:32,573][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2126986162-1386116225#4346, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ff7954e6-1139-48a3-bfa4-1ccb1c001056, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:32,579][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1317281813-1850696156#4347, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:32,709][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:935605758-1386116225#4350, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1c1eeacf-5f52-4273-9ae0-d38e0c6e39df, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:32,716][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1880719903-535990401#4351, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:32,830][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:544119987-1386116225#4352, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=268c564f-e6b8-416c-a111-2c7918cf6464, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:32,834][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:722695847-320085940#4353, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:32,965][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1357783183-1386116225#4354, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dedf3478-d0f0-4a6b-b481-6930fe9cfc30, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:32,969][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:70366501-874990922#4355, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:33,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:125640133-1386116225#4356, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bcada82a-70a1-443a-b7e7-6674efb885f6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:33,072][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:641122301-799522435#4357, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:33,174][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:568650528-1386116225#4358, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=88180b6c-6e65-41c5-b2c6-58550404d264, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:33,179][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1310214636-1564663429#4359, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:33,306][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1325608968-1386116225#4360, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4390f4ad-8a0e-44eb-b380-90f6eb3c7212, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:33,311][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1236827939-1164122321#4361, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:33,401][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:272256925-330533482#4362, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:33,450][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:479248679-383662297#4367, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:33,464][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1423625016-1386116225#4369, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=caf9fe4e-d1ef-43a5-862c-e0ea727a8adc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:33,480][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1538648851-1102479547#4370, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:33,503][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1471061381-914245725#4371, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:33,556][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2137334739-1386116225#4376, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=376b1339-6a48-4eaf-9441-d48c5672f995, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:33,561][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:690381984-180848308#4377, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:33,628][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1321147153-1386116225#4378, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=faa3c0d2-9e7a-45e9-8bc3-5b98f4fd353b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:33,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:403886766-42706536#4379, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:33,719][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:877621931-1386116225#4380, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aac94845-1eb7-4cc5-a97f-aa78b6d0b771, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:33,722][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:43942048-202880511#4381, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:33,791][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1408301811-1386116225#4382, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=33594b61-7e4c-450f-ae27-980dadbc307d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:33,795][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:476385292-1787304096#4383, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:33,883][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1526853699-1386116225#4384, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0ff3eafd-aabc-43c8-b715-c272d4b63b78, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:33,886][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:259174066-992160288#4385, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:33,964][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:298088700-1386116225#4386, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6b38716c-4bcd-485d-91c5-63ce39ffd6a0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:33,985][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2118783922-314234963#4388, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:33,990][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1167262063-1603154001#4387, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:34,016][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2111726506-1332737909#4389, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:34,074][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:304746382-1386116225#4390, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=828398a7-b519-43fd-9e39-0068d2523358, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:34,077][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1007204642-843402810#4391, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:34,144][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:35771224-1386116225#4392, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=544728f7-809c-475b-8f35-e11e78bbced5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:34,147][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1077279469-965581408#4393, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:34,228][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:555825141-1386116225#4394, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=15032deb-fb51-4e8f-9a32-3dc976a0912e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:34,233][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:764840858-1117515351#4395, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:34,338][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:395322110-1386116225#4396, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6eaa2cf4-05d3-4593-a814-893fcec0fbcb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:34,344][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1067852134-645244755#4397, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:34,417][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:989924508-1386116225#4398, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=24dadace-fc70-4259-a32f-82b841d90170, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:34,423][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:756047568-590608133#4399, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:34,513][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:678920975-1386116225#4400, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=241b2b7b-2d4a-44d2-afc3-6e037e93045a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:34,518][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:455151473-887632923#4401, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:34,618][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:148858460-1386116225#4402, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ffb3a7a6-44b1-423b-86dd-efef88604ee2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:34,625][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:472179635-258817473#4403, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:34,712][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2052102363-1386116225#4404, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e113c114-f9b7-407d-bf21-895602fee48c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:34,718][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:164559947-852279226#4405, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:34,798][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1411976983-1386116225#4406, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dbcb1344-9f92-4da5-a8d0-03ea8fb5c186, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:34,802][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:708956937-1410551470#4407, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:34,908][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:58002169-1386116225#4408, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6557bf20-35b5-47b3-a714-ad085ad01ac9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:34,913][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:523828279-994422082#4409, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:34,999][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1970139834-1386116225#4410, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5d5b29c3-4e65-4680-a748-64ce124be3bb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,003][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1583619116-115706515#4411, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,082][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:282859696-1386116225#4412, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8f83d080-814d-4804-9226-bb760fc569d8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,090][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:171884595-1959082020#4413, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,156][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1583256893-1386116225#4414, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c3c7c1e4-9035-44ec-badb-3a69df97b7c4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,159][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:783753182-1383361891#4415, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,224][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:254638865-1386116225#4416, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=87c8637b-51ed-4779-963d-ae7cba0d89ec, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,227][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:628158644-858735147#4417, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,293][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1119960664-1386116225#4418, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4ea27f71-d2de-44d6-8d39-77684016f06f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,298][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:642789602-75993548#4419, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,392][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1299232109-1386116225#4420, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b9a952c7-2858-4480-bc8d-73aff8ad13a1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,396][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:101212517-561546854#4421, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,471][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:424245876-1386116225#4422, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1a7ca00e-f030-400d-9d98-c0c03c4b5f43, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,475][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1373274093-337395706#4423, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,564][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1907544233-1386116225#4424, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b765ee55-3a6a-40fe-9c6b-c92d5174f116, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,567][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:595238449-568174756#4425, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,651][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1414246538-1386116225#4426, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4e132b36-f45b-49fa-ad9f-13553440deca, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,655][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:865797426-1156030054#4427, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,714][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:137598678-1386116225#4428, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9d3f51d7-ed9e-4633-8781-3cdc38ae5666, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,717][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:24488122-1781305139#4429, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,828][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:314583230-1386116225#4430, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d9aa57c7-87c4-498f-ac46-9ca07015fca1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:106006806-718127390#4431, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,927][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:605460067-1386116225#4432, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bcdf6b58-513c-49cc-9fa0-e852a9398b0b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:35,936][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:931188615-1024715096#4433, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:35,954][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1514084659-522627512#4434, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:36,033][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2031225557-1386116225#4436, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=021a1e0c-92b3-4ea7-8170-bf57b30f64b6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:36,036][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1764175386-1491744846#4437, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:36,118][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2056344354-1386116225#4438, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4215945e-c143-4389-8c5c-cfa82720bdfe, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:36,124][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:322742791-1136329092#4439, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:36,218][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1243249141-1386116225#4440, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f661ea4f-c5fe-45df-b9c3-c9c83a198ea8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:36,224][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:979516375-1291371022#4441, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:36,341][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1465142580-1386116225#4442, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=daa00d1f-efb8-4baf-ab80-0fefa136c5d5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:36,356][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1310217210-1703896429#4443, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:36,400][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1997464702-1449265557#4444, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:36,431][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:373165759-1386116225#4449, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6197edef-90b4-42a2-bfe6-7debfb40a136, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:36,435][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:570364020-567422241#4450, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:36,469][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1521090148-362772253#4453, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:36,535][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:974365949-833697188#4468, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:36,537][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:145760418-1386116225#4470, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fc553691-8e1b-476c-8726-24bc546c691f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:36,550][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:503293198-1941315123#4471, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:36,610][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:20417891-319020096#4472, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:36,638][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1494428308-1386116225#4477, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ca6d7af0-9228-4272-b858-9a8741540483, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:36,642][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:836763245-1977860165#4478, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:36,647][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1993516868--52387744#4479, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:58:36,651][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1270050920--53075430#4480, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:36,707][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1471658315-2113315180#4482, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:36,727][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1180652674-1386116225#4487, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=420d809f-b80d-48e3-8644-08f52e049ed4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:36,735][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:106463575-1708392031#4488, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:36,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:900981437-1386116225#4489, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eccb84fe-990f-4eaf-8958-4299b49b6bd0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:36,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:158616525-1264857485#4490, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:36,956][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:826216376-1386116225#4491, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d7a1c342-4493-4833-a256-4a9f0838fed6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:36,965][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:464762152-817016752#4492, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:37,040][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1521485938-1386116225#4493, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=32d56064-3b2d-4801-bea6-585e14543e99, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:37,044][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:331058771-363291641#4494, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:37,117][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:810385874-1386116225#4495, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4eb776d5-32bb-455a-a98f-144f9ad5527a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:37,123][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1784998961-627191352#4496, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:37,199][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:200554950-1386116225#4497, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ba52a12f-2ac7-4b9d-a181-6dd535393a30, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:37,203][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1475046011-438501843#4498, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:37,331][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:772075329-1386116225#4499, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=efa1fd13-749f-4fb3-9f3d-40c27ab3ae98, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:37,349][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:76859726-136364821#4500, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:37,442][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:177174107-1386116225#4501, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dac2d567-ce76-443f-81f1-325a61927ae5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:37,447][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:58261164-553949492#4502, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:37,521][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:791862890-1386116225#4503, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=872fe54c-a4be-4cf2-a52c-c359cd611a55, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:37,524][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1593727097-448217236#4504, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:37,584][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:536848335-1386116225#4505, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dac0d6e3-57d3-4156-b83b-de5668987e55, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:37,587][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:638053332-177619709#4506, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:37,660][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1365643280-1386116225#4509, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4d337630-c1e8-4f11-ad59-db2f04533cce, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:37,664][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1776234859-1801381715#4510, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:37,746][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:324850656-1386116225#4511, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ecc1baf0-95d1-4980-b646-77c21d6c7d49, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:37,750][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1927001867-1646236754#4512, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:37,841][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2120713021-1386116225#4513, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=29e900b1-6a19-42a0-b827-c6f7a66bc0e7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:37,846][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:198286530-614273372#4514, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:37,926][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:985574553-1386116225#4515, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f9d244ca-4b56-4905-891c-908dd8baed50, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:37,930][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2021830296-2133985990#4516, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,000][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:870966157-1386116225#4517, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a0c307cf-c7a2-440b-ac33-b0c9d6b223f9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,009][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2088520461-292015220#4518, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,084][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2129432740-1386116225#4519, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=91d84647-9299-46c8-95fa-4d130b8a7991, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,087][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:48623999-484439565#4520, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,167][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:871669134-1386116225#4521, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4d92ac09-4b4f-4b5a-acc2-014be864f081, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,171][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:688341732-71577778#4522, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,270][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1741214121-1386116225#4523, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=10fada56-2155-40d3-b773-708b45f806c2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,274][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1883711539-1673807037#4524, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,359][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1184901591-1386116225#4525, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=051534da-aa53-4258-a98a-f00c29e863b9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,366][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1740959027-772491080#4526, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,466][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1873481624-679640363#4527, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,476][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1760538749-1386116225#4529, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c537f2dc-6c5b-47f2-9863-4116ef5e7f56, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,482][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:480938799-726307053#4530, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,550][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:278584202-1386116225#4531, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bb1a90c6-11af-46db-a6c1-827be7804c50, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,554][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:98827708-1297673692#4532, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,622][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:854245730-1386116225#4533, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=13544276-88d9-47fa-a89e-88d559a88c47, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,637][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:856949801-1486752742#4535, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1961499198-1853757186#4534, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,661][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:847879263-2050795171#4537, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2207.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2207, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,732][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1682055452-1386116225#4538, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=87e1ce5c-2930-4c0a-af01-26944c86a48d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,736][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1771753601-1106458479#4539, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,816][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:4660519-1386116225#4540, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b7ab7dd4-81f5-4a72-b63b-a2d9c567a85a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,820][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1072050282-544243851#4541, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:38,915][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:618192123-1386116225#4542, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8ed1df05-7de7-44e2-b5f8-2ea78e47bcb7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:38,947][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:525423324-1203848726#4543, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:39,026][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1235897316-1845161602#4544, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:39,051][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:981473637-1337951720#4545, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:39,400][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:860613698-1017465220#4546, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:39,414][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1453755747-380568055#4551, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:39,520][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2015925843-898932406#4556, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:40,966][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:779749003-340685624#4561, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:41,440][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:585993276-1386116225#4563, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a5bcbeba-4e59-4c25-a282-55d7d7cd62d0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:41,444][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:686355948-957919081#4564, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:41,514][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:20558580-1386116225#4565, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e986e41b-0f09-453d-b5d7-efd59766b595, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:41,517][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1328550539-867143651#4566, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:41,580][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1662446117-1386116225#4567, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b6a7df99-8a7b-4bd5-b40e-5f90a5cda900, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:41,585][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:826385737-1461239884#4568, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:41,677][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:223932169-1386116225#4569, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e7561a7d-9059-4b12-8154-a29540343e72, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:41,680][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:418587758-1466720260#4570, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:41,747][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1134169842-1386116225#4571, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fb302ece-379a-41f0-9120-8a1f3c24d55b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:41,750][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1807477837-2049985494#4572, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:41,832][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:267958887-1386116225#4573, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ea78183a-e407-42f7-b835-9cbd55b07656, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:41,838][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2077538220-54672891#4574, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:41,953][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1542139519-1386116225#4575, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2156b97a-caef-4e9d-b44b-17c57a1caea9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:41,957][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1993591209-1987481874#4576, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:42,041][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:285323948-1386116225#4577, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8db6efa9-a2e8-4312-b61b-89c31f986ce2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:42,045][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:675361191-989752497#4578, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:42,122][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:41927648-1386116225#4579, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=45ba97b9-6130-45c1-aed0-033d95040bb0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:42,126][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1376281798-280265108#4580, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:42,213][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1209956938-1386116225#4581, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e8569019-728d-47a1-9594-ec8b01ae7bfc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:42,217][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:836326956-2013998914#4582, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:42,308][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1241787872-1386116225#4583, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=350e92ef-fdc9-41a9-814a-3c1af78db128, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:42,312][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1773427409-1564008018#4584, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:42,386][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1452040926-1386116225#4585, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9e69a8d4-4a91-4018-b5de-f11c259774b3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:42,393][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:648780783-133943623#4586, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:42,406][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:871944373-1615537647#4587, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:42,435][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:648281905-1655753016#4594, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:42,521][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1432457402-1386116225#4607, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cf19c27d-3132-4671-bd61-de656df056ea, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:42,525][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1288855995-1459874877#4608, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:42,587][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1589801476-833697188#4611, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:42,639][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1730237594-1386116225#4615, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3cf1b4d6-7a8a-40c6-9319-ec524b55c4f4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:42,644][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:755855825-1957031134#4616, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:42,675][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:54310991-1510022354#4617, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:42,747][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:387844036--52387744#4622, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:58:42,786][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2054558777-1386116225#4623, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=59886475-5890-4fc5-a9a4-c866afed1515, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:42,798][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:476980728-1314610475#4624, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:42,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:732271688-1670379269#4625, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:42,966][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:689722115-1386116225#4630, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=66fdb2bb-3195-4b4a-89be-c6f09b22af44, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:42,977][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1661033925-246277560#4631, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:43,093][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:445338435-1386116225#4632, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ee99744a-8c0e-4c5a-b345-7c5fd2d4d48e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:43,098][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1371836250-952246226#4633, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:43,168][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1495510359-1386116225#4634, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d9861082-08a9-4868-89ac-bb1ad4fa81ac, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:43,171][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:435350651-1815678528#4635, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:43,286][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1152233626-1386116225#4636, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=45792c0b-693a-4708-86e7-ad2b8140d549, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:43,301][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2159693-239030534#4637, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:43,382][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:718275983-1386116225#4638, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=181f5d7f-d816-493a-ae70-258a7bf3f44e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:43,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:55593263-81086356#4639, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:43,465][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1880523113-1514151577#4640, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:43,489][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1532509647-1386116225#4642, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3bf20e4b-bf10-4a48-88b2-b3521bda495d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:43,495][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1973369047-835117764#4643, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:43,638][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1797818035-1386116225#4644, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=60734d72-19bb-41d0-92c2-337bb077d824, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:43,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1896118364-2110897963#4645, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:44,061][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:625639772-2119326263#4654, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:44,071][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2064097943-1386116225#4655, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eb34b141-cfac-448f-a764-694830310ef9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:44,111][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1412804186-102890008#4656, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:44,285][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1996039440-816587330#4657, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:44,343][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1225923955-1386116225#4658, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0d898b41-cf30-443f-9211-03bb07d09eed, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:44,352][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1080741747-2131014603#4659, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:44,518][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:787161179-1386116225#4660, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e646e627-0508-44b7-98d9-580aeef1d8eb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:44,526][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2001422704-1632375229#4661, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:44,636][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:990674100-1386116225#4664, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=25bd2aa8-6905-4c70-8484-4f6847f527bb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:44,642][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1276275318-1639955021#4665, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:44,803][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1627360830-1386116225#4666, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f43085f7-8701-4c1a-a123-057dc8619f3c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:44,808][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:944678729-1733307372#4667, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:44,886][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2074183833-1386116225#4668, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4a36ffe5-d522-40f4-9bd8-4ff06297e499, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:44,890][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1731426221-713744621#4669, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:45,003][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1289990427-1386116225#4670, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9af24e4e-b882-4c8f-a7e3-c2014932f95b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:45,010][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:997264734-1191414658#4671, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:45,161][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:980649479-1386116225#4674, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=255f6cab-9b03-4129-9397-e37507764474, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:45,165][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1808372539-1491171553#4675, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:45,281][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:65386468-1386116225#4676, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=51cec6c4-5d36-4660-92a3-b683cac576be, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:45,285][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:629164577-49763809#4677, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:45,390][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1367474990-1386116225#4680, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f7d260fb-2211-4cc9-866d-fa06b3711f0b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:45,395][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2146878573-1476417776#4681, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:45,467][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1185125588-1740799620#4682, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:45,519][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:323939568-949237921#4687, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:45,529][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:804679332-1386116225#4692, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=64fac545-9b89-4667-97ca-c2cea5fc86b9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:45,577][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:184709695-1875846851#4693, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:45,710][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1980189355-1386116225#4694, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ffafceac-a1d3-4967-af81-d6c17a7a9274, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:45,715][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1788385665-1922276711#4695, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:45,906][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1685869768-1386116225#4696, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=92ec81fc-ac07-4ce6-9036-79b824f216f7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:45,914][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:685906174-110676210#4697, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:45,968][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1745749475-1850918462#4698, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:46,028][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1456412386-1386116225#4700, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=be65a4a0-dc1d-425c-8f4c-1e2f1e61968e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:46,032][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:374381457-241804709#4701, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:46,160][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1987244384-1386116225#4704, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3a9a6480-0005-44fe-97d4-754613631022, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:46,164][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1478787402-1245320652#4705, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:46,256][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:155043235-1386116225#4706, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9035e38a-2e65-4aa6-9049-4453f33eb5b4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:46,260][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1747311637-343355018#4707, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:46,347][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:251252157-1386116225#4708, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c59b3625-0979-4d64-ac96-6901f6666bba, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:46,357][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1770914076-789429580#4709, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:46,474][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:44287321-1386116225#4710, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ada88c88-5777-4270-8e19-221166c6b1a0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:46,479][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1123509397-1533545270#4711, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:46,549][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:432880330-1386116225#4712, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=21d70f3b-08db-4fd6-b070-7d8ba8adf0a8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:46,561][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:98090407-2096280133#4713, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:46,686][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1742223190-1386116225#4716, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=122674a9-a6a9-4ae2-a578-c28a95701694, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:46,692][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:397625869-1472657625#4717, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:46,799][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:860615739-1386116225#4718, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a15a87e5-b3fe-4ca0-8247-ccaeedbcc85e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:46,802][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1951425662-1221571028#4719, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:46,941][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:356748082-1386116225#4720, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7ba1841a-32d2-4fe1-b3e7-0c4d5dd82037, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:46,948][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2042974093-239183711#4721, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:47,036][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1001776722-1386116225#4722, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=35d257de-2617-4a57-b0ab-c2f7ddf2a7ce, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:47,057][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:849797133-1632401651#4723, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:47,182][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1655984346-1386116225#4724, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5f342a5f-958e-4a4f-abba-9ecbdf26a1e0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:47,190][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1990704552-1929682425#4725, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:47,319][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1905129610-1386116225#4726, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=783b81a7-fb91-4851-8fde-979493284584, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:47,335][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:838812897-2063529355#4727, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:47,437][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:759317624-1386116225#4728, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c1831583-3429-42ef-abdf-9d8c61f08d2f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:47,443][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:857055474-2013671997#4729, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:47,531][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1977209371-1386116225#4730, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=64949df4-bce0-4955-ba84-bd4d69af3934, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:47,536][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1250376028-1410011854#4731, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:47,626][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:492127656-1386116225#4734, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b4d5da8d-52d6-4c29-af8d-cb3a663cf972, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:47,630][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:648480019-1436124482#4735, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:47,714][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1502109789-1386116225#4738, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=379a617c-744a-456e-91b6-76c365d55b09, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:47,736][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1850152641-1884690823#4739, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:47,832][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1778135386-1386116225#4740, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e2666c90-7266-4dc0-aeed-0f6ba861e94b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:47,837][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1936473776-625729282#4741, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:47,962][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1695641613-1386116225#4742, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=781580c9-17ae-4258-80e1-c8aa949605c9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:47,970][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1844439828-2137313703#4743, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:48,121][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:70038150-1386116225#4744, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=70e0f9f1-665b-4c8f-b1bb-7edd3c0ec1ca, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:48,124][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1783839510-2021054979#4745, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:48,247][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:558290243-1386116225#4750, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=18ece519-b513-4bcd-b4fb-405d55769454, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:48,254][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1084226415-862446561#4751, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:48,339][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2098172236--698386866#4752, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=855.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=855, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:48,365][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1786036067-1427072449#4754, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:48,440][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1094820690-883820959#4755, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:48,501][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:18753769-1818870138#4762, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:48,522][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1509682282-1484755944#4768, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:48,538][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:398438435-1386116225#4769, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2fe2d9b2-2d84-41a4-bc83-14468956aae9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:48,544][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:376240089-790110811#4773, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:48,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:959512184-1060031880#4779, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:48,671][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:459995478-1908309168#4781, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2209.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2209, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:48,687][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1605443121-833697188#4784, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:48,729][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1329827777-1386116225#4786, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=613513c4-b8f6-4e67-bb94-22c843a3e69b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:48,734][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:105400620-1243914490#4787, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:48,770][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2112976556-206734580#4788, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:48,825][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1656120799--53075430#4793, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:48,827][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1224548082--52387744#4794, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:58:48,852][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:462663083-1386116225#4796, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2a22849e-ab6e-4142-a8c9-9a0c8556c073, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:48,856][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:899792686-1133767456#4797, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:48,888][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1543418498-179813567#4798, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:48,937][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1607894748-1386116225#4803, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dc6e2b01-d504-493d-940d-5c841bf821ca, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:48,941][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:852965896-1858145689#4804, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:49,018][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:807067308-1386116225#4805, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b4844869-540e-48c4-9546-88fdd4345d2e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:49,022][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1074120801-2002831002#4806, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:49,112][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2087494916-447206101#4807, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:49,160][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:279989459-1386116225#4810, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4e650b05-54c4-499d-932a-78403f4a946b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:49,166][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1947158304-95030061#4813, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:49,305][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:382223771-1386116225#4814, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b5e1bb2a-283f-4e3f-9f88-a40f3fc25f8d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:49,311][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:477616665-954372664#4815, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:49,415][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2109985272-457871186#4816, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:49,444][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:151948860-1386116225#4817, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e716d929-44bc-4d90-918e-62fdf8762b5c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:49,450][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:920319043-1677488854#4818, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:49,556][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1564403227-1386116225#4819, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2ae5f892-788b-4098-98e5-c955a4f7fdb2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:49,561][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1106889634-1831269111#4820, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:49,584][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1041346645--689251507#4821, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=407.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=407, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:49,659][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1903073498-1386116225#4823, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8998c435-4db3-4f5b-8866-134c06bc54b0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:49,663][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:205483004-215335535#4824, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:49,742][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:216827813-1386116225#4825, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0e81e030-f3eb-44cd-98a2-ac444f79b6af, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:49,747][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:58633356-1502955358#4826, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:49,838][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:642295325-1386116225#4827, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3ac28e63-0f16-4aaf-bf3a-e21348d94920, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:49,844][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:771929883-216452622#4828, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:49,964][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:359147929-1386116225#4829, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f1179342-217e-4d63-bd04-e351dd89ec74, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:49,984][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2055870930-156634730#4830, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:50,085][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:281402278-1386116225#4831, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b103ec3e-ef39-4080-b007-827555b856ad, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:50,091][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:853006900-142341342#4832, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:50,184][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2029828020-1386116225#4833, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0681bece-e41d-496b-9215-d4ec0dd74454, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:50,188][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:571816074-461981692#4834, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:50,264][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:468160248-1386116225#4835, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c87dc2fd-dff8-4a23-ac1e-e8b9bb745f26, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:50,269][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:386083011-1074394105#4836, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:50,394][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1326926076-1386116225#4837, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=13fec696-b1bd-44bf-9dab-37dace19c379, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:50,398][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1263751706-439634475#4838, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:50,483][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1907466835-1386116225#4839, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7c2765ba-b869-40e6-a3c4-a395fb4cd0be, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:50,493][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:343878814-459707347#4840, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:50,602][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1819146950-1386116225#4841, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2d98dfc3-d476-474e-8bbc-eeda7c80df14, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:50,610][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1249169703-1915338576#4842, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:50,724][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1272592893-1386116225#4843, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=27c336aa-1e99-4b6a-b3b5-863e1ec9e908, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:50,729][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:526345815-814253668#4844, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:50,829][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1056954578-1386116225#4845, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4cae36d0-88ab-4ccc-9085-dd63cd3b87da, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:50,834][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1545176251-1668641623#4846, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:50,923][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1117804132-1386116225#4847, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eb4d1275-81c3-4c52-a558-c49924163c5d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:50,928][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:125619376-1932775837#4848, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:50,978][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1663020828-725129187#4849, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:51,023][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1100492604-1386116225#4851, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=384f2bdd-30f5-47de-8c2b-dc8e0f6876ea, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:51,028][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1254147960-655513732#4852, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:51,115][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1536684835-1386116225#4853, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=03e86979-4364-468b-98d1-22e56e971953, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:51,123][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:963339317-1443068788#4854, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:51,194][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1532811808-1386116225#4855, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=158f98e1-0862-4391-a9de-b65092e07236, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:51,198][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:439651787-802631793#4856, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:51,290][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1060512899-1386116225#4857, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=46762e62-7f42-4e2f-b9fd-49c2544e6b4f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:51,293][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1300210546-15378802#4858, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:51,377][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1358549615-1386116225#4859, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=71a0e8c7-5df3-445e-a58f-8e04f65dc6fa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:51,381][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:404266801-1307317369#4860, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:51,427][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1755881719-1392494314#4861, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:51,455][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1412350388-1403808606#4866, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:51,478][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1678628635-1386116225#4871, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=18a9450d-447b-4ab1-8548-b162619ad503, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:51,487][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1826310993-1057208864#4872, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:51,590][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1505594464-1386116225#4873, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=90a0f3df-89cb-4002-a738-25baf3287f22, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:51,594][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:495124245-767852896#4874, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:51,694][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1470212584-1386116225#4875, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ae84c2dc-5f7e-4025-9063-5363b21ef7c1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:51,699][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:460572234-964931006#4876, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:51,788][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1230332889-1386116225#4877, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ed763bb0-71b9-4f18-8423-98e8ec05c005, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:51,806][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:863209420-984997699#4878, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:51,897][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1139458279-1386116225#4879, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eb199446-7345-4a10-98b0-2367938c0eba, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:51,902][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1064378313-465284036#4880, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:51,988][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1988201078-1386116225#4881, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f3dc0f2b-81a5-4511-9925-77b9ac799a3f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:51,992][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:398086153-1368992945#4882, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:52,094][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1533311631-1386116225#4883, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4c1e2567-c128-4798-a37c-e4799c1cc1ad, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:52,100][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:765995480-427454046#4884, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:52,174][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:567052719-1386116225#4885, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c4027c5a-9933-4f95-9bd1-9b924ef91d9c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:52,182][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1543855968-1147215093#4886, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:52,263][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:560205450-1386116225#4887, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6ff199f-8701-49e0-9b2f-b57bc95398eb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:52,271][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:678107976-1646893189#4888, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:52,364][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:216521227-1386116225#4889, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5e82f026-f53d-4a97-8ecd-f6bf341dc14d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:52,369][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:337716735-1491801402#4890, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:52,450][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1957656858-1386116225#4891, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d352075e-039c-40a7-bbd2-922e61545c3d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:52,467][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:682292276-115981332#4892, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:52,584][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:837486545-1386116225#4893, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ab3c54ef-b2ee-44b1-882d-741f7d774cf6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:52,587][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:469397483-465103723#4894, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:52,665][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:821714744-1386116225#4897, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=33413394-774e-4e5d-9504-d039e1c6ae97, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:52,669][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1682749308-789495549#4898, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:52,767][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:41942190-1386116225#4899, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c79db394-40ec-4d57-862d-1cf07071a93d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:52,770][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1732450752-998000112#4900, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:52,838][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:219624018-1386116225#4901, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=606f587f-172e-4f50-b1fc-7978664feffe, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:52,846][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:973796020-1613322846#4902, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:52,925][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1680566702-1386116225#4903, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8e7608c5-fe4c-47fb-9407-c434e948dc42, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:52,930][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:534499970-1188124492#4904, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:52,990][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:105572748-1386116225#4905, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=43ac808f-a0cf-4af7-b002-690be19bee4f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:52,995][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:723747440-24299232#4906, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,060][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2066607975-1386116225#4907, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f2e17886-5784-4c77-afc1-e1df36e228bf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,063][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1081887630-207298554#4908, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,147][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1327286258-1386116225#4909, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=40da4278-b62a-4513-909c-e2b06634dcb6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,153][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1004284931-739162206#4910, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,243][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1892000166-1386116225#4911, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e395116d-c3d6-4410-b1d2-f2cd6d80ffd9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,249][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:244098666-1526520974#4912, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,321][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:554836155-1386116225#4913, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f52b9d97-da5a-483a-ae3b-0edbfd2fec7d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,330][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1728486-1502600179#4914, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,403][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:894481705-1386116225#4915, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fab30f0f-926a-4a98-9446-6977cee4db60, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,406][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:853252446-243219239#4916, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,466][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:193490156-1386116225#4917, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7d07a37f-bf49-49bb-89a6-1b39944b5199, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,470][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:907416394-68927490#4918, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,479][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1548267617-2067773528#4920, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,553][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1315981744-1386116225#4921, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a5e7a33b-4648-4e05-bac9-2fc4d3d2c4a5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,557][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:356572936-1645308036#4922, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,639][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:106406814-1386116225#4923, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ffa49a35-33af-407c-8992-0eb71667ea10, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,644][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1855174007-120563049#4924, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,718][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:6126685-1386116225#4925, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=97379ecf-e61c-4529-bd68-be99f9e05cf5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,723][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1681367420-1574718104#4926, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,794][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1511831428-1386116225#4927, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f174f678-9dc8-435f-a300-8564ba465daa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,797][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:773289049-1424590879#4928, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,853][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:384649406-1386116225#4929, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9b666836-5896-4f48-9187-bd212be9e1b5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,857][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:218955711-842787852#4930, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,920][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:765280942-1386116225#4931, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b99635ec-6e31-4b07-a115-1eb6f38bdb61, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,924][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:664527790-1059733042#4932, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:53,983][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1187609812-1386116225#4933, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6ddd18ec-3d88-4282-ab29-fa92728af07a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:53,991][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1429327727-948372041#4934, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:54,098][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2044085022-1386116225#4935, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=66305e31-992b-4272-a9ea-075bbb5e5371, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:54,104][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1090064484-776764903#4936, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:54,148][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1969067510-1976063070#4937, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:54,215][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:92425250-1386116225#4938, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ab2a0bc5-fea8-43ba-8373-9ee8db35779a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:54,221][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:692004975-518185906#4939, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:54,340][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1112405518-1386116225#4940, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e0e9731c-d73a-4210-acc1-79fa6f632444, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:54,346][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:863033157-620630340#4941, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:54,427][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:159085608-127653609#4942, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:54,448][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1332677967-1386116225#4947, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0e646a41-afe0-4749-9ba5-519ce732317e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:54,453][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1339584187-1024878305#4948, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:54,471][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:82475279-320784108#4951, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:54,550][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1464874316-396188583#4952, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:54,592][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1053736711-1386116225#4962, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f2aa0674-90fe-42af-9a11-7b679a4c1049, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:54,629][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:249147563-1836816002#4966, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:54,708][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:995570740-833697188#4969, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:54,717][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:167561444-1386116225#4971, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=29776ccd-3d92-4f66-9b2f-632946ecf5e3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:54,731][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1189740698-99990532#4972, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:54,849][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1586096853-1386116225#4973, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=22ee6557-9eaf-41b9-9871-3952b4d8a994, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:54,855][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:881587646-914325903#4974, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:54,861][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:503657299-676242893#4975, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:54,894][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1400118404--52387744#4980, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:58:54,951][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:545761546-138032258#4981, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:58:54,970][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1293343134-1386116225#4986, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0216f6f8-a692-4f8a-ad36-ed1dead681b4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:54,975][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1677137470-701399094#4987, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,062][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2050946244-1386116225#4988, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=87f2d0ca-a066-48af-b1c0-017e529c62be, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:55,066][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:882680828-1843077065#4989, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,174][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:662918787-1386116225#4990, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bbae12e0-2fe3-427d-ae83-968be1a4861f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:55,180][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:918987434-1809075060#4991, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,259][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1415638731-1386116225#4992, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=82740002-4829-4a57-aaaa-e74d9edde9db, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:55,263][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:981894833-261546879#4993, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,343][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:801179632-1386116225#4994, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fb0bc3f2-8127-4582-bfc4-a78958a80a63, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:55,347][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:214356949-1166063314#4995, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,454][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:584343064-1386116225#4996, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=56dceb30-22de-4a88-9948-6b5f1f90056e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:55,477][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1270682589-1929940174#4997, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,603][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:526263183-1386116225#4998, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=391be883-5e15-4e07-8d4b-be6d95df9f43, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:55,607][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1231724801-161265880#4999, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,704][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1285263385-1386116225#5000, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a9d14b64-9bd3-4e38-8b5c-9dbc182e3a94, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:55,708][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:706507213-491120316#5001, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,768][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1807933693-1386116225#5002, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=47942a3d-8a9d-4dea-83e1-2af81f025e2c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:55,772][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:20655804-1829571643#5003, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,847][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1801864963-1386116225#5004, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cd255016-d22a-4ac6-8764-cd64bab7c425, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:55,851][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:609651278-370468990#5005, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,914][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:88757179-1386116225#5006, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=92f29e14-9cd3-4624-b820-ca6e4bd97c42, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:55,919][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1317173966-1273744369#5007, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,973][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1543453752-1788442657#5008, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:55,981][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:364974163-1386116225#5010, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a8204f0b-390f-488b-b475-328fcfa336db, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:55,986][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:932195254-573692662#5011, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:56,053][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1777913630-1386116225#5012, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6daf3cc6-de7e-4e55-9cc1-9dfd012c115f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:56,057][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:9256052-561251380#5013, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:56,115][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:822068093-1386116225#5014, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b6c3b530-226a-41d7-8153-752047b785cf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:56,119][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:386881079-994429002#5015, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:56,209][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1736415570-1386116225#5016, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=184a0459-2e57-4b65-8b98-ee74b1df69ce, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:56,216][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1388461514-1394005506#5017, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:56,319][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2057395814-1386116225#5018, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d2d60934-fa4a-4d56-a56e-b82d9c699e1a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:56,327][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1044745401-727123107#5019, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:56,408][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1435434515-1386116225#5020, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=712cba10-a700-4598-9bcd-2c075245c0b9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:56,414][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1756909678-234569149#5021, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:56,504][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:463748084-1386116225#5022, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9413491d-0708-4ac9-bbb4-0c1197b0977c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:56,508][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:524896511-203957673#5023, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:56,616][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:9082075-1386116225#5024, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d85c9015-53ae-4fb1-85a9-00e02c2fa135, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:56,621][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:649674594-1929111773#5025, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:56,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1881712834-1386116225#5026, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f241769f-9195-4bae-a0b4-66402f058fd5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:56,697][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:664815821-1793602813#5027, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:56,769][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1383378610-1386116225#5028, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=598e5273-cfa1-4fdd-82af-5374f22ffb86, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:56,774][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:96814317-676718984#5029, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:56,855][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1756714131-1386116225#5030, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c4d71b0e-9ef0-4303-9e3d-9d3baf95ac2c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:56,859][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:219560559-653437164#5031, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:56,933][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1020082450-1386116225#5032, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4a65d979-33bf-4b12-9836-c366b10e03ff, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:56,940][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:163541747-245482469#5033, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:57,035][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:152496369-1386116225#5034, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a34f37f3-f7a3-4a28-87e6-99a9fc49ff0d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:57,057][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:853034268-22949475#5035, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:57,170][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2120271455-1386116225#5036, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=df250d9e-b7c7-4cda-98cc-6e65e5e3f1ad, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:57,178][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1938095185-1933223727#5037, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:57,266][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1018365132-1386116225#5038, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=425cac98-7837-499a-9739-815b15f2ea42, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:57,271][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:62586097-1944578003#5039, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:57,361][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1776529377-1386116225#5040, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6f33dac4-0ff8-4137-9bb6-6d694bf12c2d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:57,374][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:668334986-24126336#5041, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:57,433][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:676099284-1574112524#5042, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:57,461][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1468830540-1386116225#5047, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b4e1ccc5-58dd-470f-8849-957e4b62ce71, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:57,468][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1908279550-216865809#5048, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:58:57,479][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:330016109-1730815127#5053, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:57,585][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:791082460-1386116225#5054, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=940baef6-4fa8-4e43-854c-f8fa1fa3f0d3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:57,589][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1716660596-37465147#5055, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:57,669][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:186061200-1386116225#5058, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aac3b77e-42a3-46b8-b817-bd40f68f3d45, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:57,674][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1291186652-2060286537#5059, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:57,749][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2147429300-1386116225#5060, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=72414746-f145-4820-b6d6-edd770688acc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:57,764][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:228849133-1386662422#5061, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:57,836][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1289404916-1386116225#5062, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=34772a6b-ba53-4933-aa1f-0a7a089afe8d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:57,840][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:834583183-540049859#5063, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:57,905][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1422546342-1386116225#5064, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=38c99786-32bc-4246-870f-994e39d6b6aa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:57,908][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:850269365-1455197836#5065, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:57,987][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1742882110-1386116225#5066, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1f276af0-3e77-4a07-897a-9c302d900d5a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:57,991][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:311569430-906529054#5067, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,074][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1640390909-1386116225#5068, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cae1658e-9372-4625-b182-2a51fc4fd448, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,088][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1958815958-1186660396#5069, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,162][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2072627280-1386116225#5070, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=75d74850-b6a2-4194-99b4-f8d1086649a7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,167][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1170896497-930629551#5071, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,244][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2104018402-1386116225#5072, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bb9822e1-36d6-4bb8-bca8-4518bfba9828, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,249][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1250053646-1411812626#5073, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,351][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:148284612-1386116225#5074, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=399d4208-2b61-49f9-ba14-57c8e976d1a9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,358][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1112084505-930706112#5075, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,427][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1522924715-1386116225#5076, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e16dca48-2167-4da4-9de3-2719355267ed, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,440][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1867753503-268302074#5077, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,479][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:96401092-2033019841#5078, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,516][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1866167531-1386116225#5080, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e8941331-a7bf-4029-b6e9-16af259664c1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,521][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:197928875-1810258446#5081, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,625][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1422388027-1386116225#5082, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=31de725c-0743-4cb2-8f4a-63ac165bc61e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:421304672-192776929#5083, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,633][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1762297315-475995341#5084, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,639][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:678936449-1124210567#5086, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2206.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2206, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,713][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2124068761-1386116225#5087, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=258247ad-1730-454a-a918-345bba568a19, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,718][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1634075994-948503890#5088, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,789][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:440890867-1386116225#5089, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=40b98b2b-779d-48b1-bb28-b76e6e10437f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,792][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1168329914-577698925#5090, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,871][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:257510029-1386116225#5091, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f85703e0-d0a1-4a9a-94c9-f9d17b940be6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,889][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1945330095-52447510#5092, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:58,972][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1546963662-1386116225#5093, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=af240b1c-be93-4e49-a64b-e3ac405c5763, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:58,983][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1547240276-165744938#5094, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:59,058][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2008651950-1386116225#5095, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=16298509-8120-4884-90a6-f03c2e524842, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:59,068][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1635252128-1620994657#5096, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:59,163][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1948907141-1967182187#5097, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:59,171][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1450214215-1386116225#5098, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0a8a0ae1-5004-4e73-bb72-98a75ed80be4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:59,178][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:726983316-948590845#5099, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:59,249][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:322483750-1386116225#5100, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b6220c6f-4547-4b30-9a6f-6e4b12a22317, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:59,255][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:53218487-1888771632#5101, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:59,368][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1772125237-1386116225#5102, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=592b5928-fe5a-452b-a3e0-a8ee6e03ae07, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:59,378][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2094547700-377462818#5103, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:59,453][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1368111458-1386116225#5104, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6b27b65d-b8d9-48a3-9f5e-0e3f29cb81a4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:59,460][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1976917998-669186746#5105, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:59,504][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:677027250-2139607860#5106, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:58:59,534][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:515822335-1386116225#5107, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ac1b0ed7-a59b-415a-8651-baaae8955e66, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:59,538][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:420725584-1921392352#5108, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:59,603][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:317860067-1386116225#5109, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7f832b63-7de1-4013-ab37-af8262a0e60e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:59,606][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:770905457-494144863#5110, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:59,702][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1849262082-1386116225#5111, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a007bc3f-7544-49a5-a029-ef478ad97772, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:59,706][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:444224738-1481189459#5112, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:59,775][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:803664002-1386116225#5113, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e595ed98-02c2-44df-801b-f162b3ed19b9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:59,778][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1839527606-1351028904#5114, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:59,860][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1202189995-1386116225#5115, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a48a5435-3abd-4326-a995-7fabc50483f5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:59,863][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:403866398-159923199#5116, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:58:59,932][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1141996428-1386116225#5117, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=40cd77af-f294-42cd-a055-f1b0ee365681, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:58:59,937][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1137933630-733558716#5118, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,023][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1711987356-1386116225#5119, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eaba2f26-ec6f-44a4-b704-8ee346b22b15, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,035][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:658463654-1872808829#5120, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,123][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2121290815-1386116225#5121, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bcd9aaa6-1ab4-4491-94dc-1bd055206240, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,127][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:935485754-1436853417#5122, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,204][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:102426612-1386116225#5123, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c9c6e428-4bb2-4698-89ad-f39658e6850d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,207][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:144390096-1636429469#5124, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,289][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1226322336-1386116225#5125, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a7eeb994-bcec-437a-92de-e7d5a6e55009, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,292][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1172736039-899149278#5126, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,373][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2046217253-1386116225#5127, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fe51e429-df7f-46e8-9ecf-3a3a2f4db8d8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,382][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1684236555-1244700188#5128, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,427][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:611922365-477003816#5129, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:00,445][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:98283144-1386116225#5136, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=94e981cf-3ac5-460c-a070-d6b24ccce0b6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,454][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:717591796-1702404256#5137, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:00,457][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:313415747-1994780902#5140, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,554][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1412418688-1386116225#5151, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=79c46957-a5f5-4d57-8caa-5893c374a991, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,561][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1887545594-1348238314#5152, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,603][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:810569186-833697188#5155, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:00,654][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1555198612-1386116225#5157, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=308ef80f-8016-428b-bb66-adc3900c5a01, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,657][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:660660282-359503465#5158, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,671][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:325720771-1260210632#5159, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:00,696][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:595503235--52387744#5164, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:59:00,697][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1643956199--53075430#5165, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,726][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:781528990-1386116225#5167, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=88724833-d35c-40d5-a095-e6fde899f023, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,742][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1844085901-1276695537#5168, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,752][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:896269791-363506296#5169, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:00,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1272772202-1386116225#5174, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5fde20e0-9942-4196-bc87-34cfeca8183c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,838][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1278400848-1975902903#5175, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,923][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2135433381-1386116225#5176, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c027657d-683c-412b-aa62-a71716d596f2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:00,928][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1393292928-162090472#5177, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:00,973][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1403246128-1833998825#5178, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,006][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1633930549-1386116225#5180, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c60815eb-881e-455d-8cbc-5d612719b879, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,015][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:577112828-1866029782#5181, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,107][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:114231561-1386116225#5182, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7d0ce664-f81b-4712-b557-7d5997f2ab91, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,114][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2042263168-1796846241#5183, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,206][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1322498814-1386116225#5184, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=85720675-8f75-4b7f-89ef-979a47743168, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,212][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:816477548-445520783#5185, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,296][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1017396933-1386116225#5186, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=61c84720-a34c-47c2-b76d-a759f586615a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,308][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1869838309-210861682#5187, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,396][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1713982988-1386116225#5188, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6e36ac23-ecdd-4a05-b7a5-1be00f3ea2e3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,401][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2070287898-266246860#5189, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,479][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:138086315-1386116225#5190, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3bb2b7d7-38eb-4c81-a859-ffb9924c60eb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,487][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:617509262-1876129227#5191, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,563][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:346065415-1386116225#5192, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5034eb15-9c62-4aad-ab1f-a4b15a35f701, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,567][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1148637543-333679206#5193, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,643][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1735055612-1386116225#5194, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a4851e60-4dca-4dd6-9154-f85c8021b05d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,647][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2005567140-84249819#5195, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,721][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:180000423-1386116225#5196, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4ef1b033-cdff-4e39-af9a-045d398d5e8f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,725][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1000739380-414846018#5197, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,796][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:829434074-1386116225#5198, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a21eb8ec-f004-4a12-8064-b7231e750a51, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,800][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1864470525-1679624095#5199, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,864][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:747491138-1386116225#5200, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=30774b40-0363-4f80-abc2-ccdc3648bdd6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,868][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:470484209-2134257386#5201, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,935][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1939599212-1386116225#5202, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4b28b4cb-c85b-4419-b9d9-830c628dbed3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,939][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:825149826-1975939034#5203, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:01,994][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1003048694-1386116225#5204, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1acd8b2c-b7f2-44c0-943f-f423291ae3ae, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:01,997][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:394606188-1352699847#5205, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,055][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:383681206-1386116225#5206, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=627979c0-815c-4e65-8aea-09881a8cc713, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,065][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1737609317-1503247533#5207, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,123][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:219406062-1386116225#5208, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6fd69ee4-66bc-4916-ba4d-6ba6bd8bda4f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,127][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1874470600-104972706#5209, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,185][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:313096467-1386116225#5210, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8d5420eb-ee6a-451a-b50a-e860d2d9930b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,188][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:31338758-1072483219#5211, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,238][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:925389085-1386116225#5212, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3e2eaa21-c708-4c5d-944a-7d32d3051b0e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,243][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1846593290-506891727#5213, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,294][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1205829065-1386116225#5214, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0a82b59e-b531-4f2c-abda-d84b2f1d1d1d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,297][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:847936662-1523238234#5215, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,355][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1891132217-1386116225#5216, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8b39f292-c52a-454f-acee-e0271d5cbb5b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,359][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1286957522-767214110#5217, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,480][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:559297254-1386116225#5218, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8b29db80-0daf-4dad-8bd3-f3897966ef62, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,507][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:306461790-1968712765#5219, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,642][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:235518650-1386116225#5220, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6fdfa22-462f-431d-8ac5-6df52f33025c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,649][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:509110431-760021446#5223, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,756][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:432073110-1386116225#5224, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a69927b7-12cb-4f9f-86ac-18c5676514d7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,760][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1524587646-119458602#5225, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,814][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1117305150-1386116225#5226, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=92aad7ed-685e-4f63-a74e-0f172ab629f9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,818][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1544189090-2081882097#5227, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,872][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:228605122-1386116225#5228, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8b9ccc17-25ac-41ee-bfcb-1e30e3661b0f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,876][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:183903489-97972121#5229, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,926][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1316250021-1386116225#5230, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=22ea70bc-4774-4b61-b996-1fb0262afe6c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,930][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1271102331-651641583#5231, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:02,985][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:340776586-1386116225#5232, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=902cb189-e297-4b86-b18b-74824d86250d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:02,988][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:847104356-1647666419#5233, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,048][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2120843872-1386116225#5234, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=578712c4-b635-4706-aa7d-1208daa77432, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,055][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:351858849-1217539507#5235, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,121][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:30001838-1386116225#5236, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=33019716-07bb-48da-93d1-60d30a380ccc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,124][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:864105077-1613738332#5237, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,188][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:956950367-1386116225#5238, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d251a7dc-96bd-4e91-b8ef-a180062343a2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,192][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1994049130-1290944606#5239, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1372241357-1386116225#5240, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8591c79b-debc-4bcc-afe0-4a62e9327e11, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,254][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:663718836-130474169#5241, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,310][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1508417711-1386116225#5242, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7a997503-4b51-4c96-962c-60e241b34593, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,313][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1565018762-104970428#5243, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,375][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:917652453-1386116225#5244, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bcc0db8d-b5d3-498b-b578-d0e752276da7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,378][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:717447236-901800844#5245, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,431][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1798017638-1833257831#5246, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:03,439][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1053800912-1386116225#5251, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3f99a7a9-c60b-4b05-9817-9279aebb4b7c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,443][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:159311191-1623343623#5252, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:03,447][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:440821895-733412043#5254, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,477][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:178519613-958389531#5258, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,527][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:492580914-1386116225#5260, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f9d7cd14-f1da-440f-92d1-386ceb6f8cc1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,530][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1587420016-1999979124#5261, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,591][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1799986939-1386116225#5262, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e4884f09-4de3-4c20-8b16-f753692d7455, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,595][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:401145344-956510742#5263, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,659][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1685647776-1386116225#5264, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bc6032ff-dde5-43cb-912c-a446b96253d9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1130431890-329906944#5265, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,729][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:857401569-1386116225#5266, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=33fe88d5-a048-4b4c-a34b-8fdd6167aa67, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,733][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:273476307-1539973341#5267, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,793][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:132620639-1386116225#5268, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2ca8f512-a037-405e-95ae-85a5ff3f7232, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,803][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1667112098-347301992#5269, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,894][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:511012587-1386116225#5270, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dbfc195b-8337-4349-9283-88baaa37f065, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,898][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:614652195-923429401#5271, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:03,962][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:947238072-1386116225#5272, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c8446b9f-fe4f-466c-9e08-8430453b40e3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:03,965][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:230856555-1067138097#5273, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,021][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1537590137-1386116225#5274, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=81958ba7-7b93-45aa-8e11-eee10237f40d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,024][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1314942145-1459671977#5275, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,091][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:832313292-1386116225#5276, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0c9a251f-6899-4e19-a28a-a025c1ca5662, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,094][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1146598541-152882850#5277, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,156][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1490082227-1386116225#5278, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=95958d43-7cd8-433a-a222-45d5a6537f80, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,160][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:161715986-1881778551#5279, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,175][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1203094322-898982841#5280, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:04,224][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:523173902-1386116225#5281, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fd197f3b-fb95-424a-989c-3232c8932f54, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,227][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1097617177-1424116513#5282, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,287][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1765618395-1386116225#5283, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a9594797-8dfc-42be-93a4-f774ef147988, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,290][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:250966146-759358146#5284, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,346][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1321230286-1386116225#5285, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4bdc4233-4468-4c70-8b5e-6217baf9a842, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,350][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1949233190-1744463588#5286, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,412][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:775804790-1386116225#5287, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4b535589-8d23-46d5-8877-9494d23da037, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,416][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1649398608-1633919231#5288, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,484][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1436166001-1386116225#5289, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=025f9dab-fae3-499e-8225-a91b384ea7c6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,487][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:358403283-152389755#5290, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,529][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1963812350-1898476929#5291, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:04,554][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:48305443-1386116225#5292, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ed510658-50b3-4602-a990-a655cc0e26cd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,557][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:563397524-1059610829#5293, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,622][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:228499156-1386116225#5294, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9c108a9f-d895-4b16-a2c6-89349828dcf9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,626][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:123525705-13836629#5295, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,684][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2088834954-1386116225#5296, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1629b188-a12f-40e7-b426-266e840bad03, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,688][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:84958960-1694450313#5297, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,742][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2101288650-1386116225#5298, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7fad0ec9-ced5-4368-b820-9899f836cce0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,745][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:167144352-244728752#5299, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,805][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:283354081-1386116225#5300, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=288ec9b5-d845-4a4a-b918-ba78284cb1e0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,811][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:363804281-792654855#5301, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,877][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:319404435-1386116225#5302, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c7995558-c968-4c49-b141-2750dd4516f4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,881][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:511245496-1913134576#5303, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,938][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:709771642-1386116225#5304, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6d3d1f5f-9900-423d-99fe-7c3c6b439b76, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:04,941][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1951772801-756096911#5305, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:04,998][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:532967488-1386116225#5306, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d8564fde-19c4-46e7-bb73-d4a5210b699c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,002][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1197061971-508679809#5307, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:999903139-1386116225#5308, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=418affaa-5d8c-4f23-b327-9a27f88e3862, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,072][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:503285902-1818896581#5309, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,145][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1885491142-1386116225#5310, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ce57bc5c-2454-4c36-adc3-48411bdddc8c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,150][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:681798296-1232678138#5311, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,211][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1961363728-1386116225#5312, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2bd7be57-b815-420e-8385-7837d8fdbd10, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,214][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:370570292-634530756#5313, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,276][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:625790328-1386116225#5314, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bbfd9e9a-25df-49de-9325-46d0ff928797, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,281][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:291041352-877302147#5315, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,343][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:7471301-1386116225#5316, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2b564961-e414-4764-8273-fa6a04d362c2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,346][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1133914814-362436660#5317, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,402][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1975260557-1386116225#5318, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=97061ee4-5020-4bbc-9606-97e99e3a3f9d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,406][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1700288471-401162776#5319, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,458][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1349903145-1386116225#5320, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bddc34b6-6c94-436d-98e5-58e32a4ba70f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,461][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1165006039-1647412545#5321, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,514][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1066791581-1386116225#5322, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7ebd2a63-39e4-467d-a965-3399f751b62d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,517][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1082536685-17940486#5323, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,576][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1877235432-1386116225#5324, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e6862c09-9504-424a-8391-c954a4f34455, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,579][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2138394771-236262602#5325, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:25949438-1386116225#5326, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d8a5b4ec-f5c7-474d-b862-65454dfb9c27, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,635][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1276485937-422679016#5327, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,699][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1059353920-1386116225#5328, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a2b069c4-0304-4f93-b6ea-580f826e9be9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,702][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1641437790-2847612#5329, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,762][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:360717376-1386116225#5330, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e5d7a0d4-5ad9-4cdf-b9cf-e4b58c78054d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,765][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:152233413-1514490387#5331, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,827][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:28205748-1386116225#5332, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=058d53ed-8daa-4c1c-b5ef-f8a9d5b1da84, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,830][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:349773021-175894350#5333, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,884][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2048801216-1386116225#5334, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6a1aecad-24f4-4bfd-bd20-a6648324f6fb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,887][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:148332533-1412728262#5335, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,941][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:23073169-1386116225#5336, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=78f21b7b-f11a-4f66-8388-76c63cf3b870, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:05,944][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:180090948-950085137#5337, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:05,983][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1212911222-1235673719#5338, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,002][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:470440671-1386116225#5340, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2f38309d-e67a-4e5f-ba4e-cdb4894d75f6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,005][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:766142177-956720412#5341, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,084][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1196268817-1386116225#5342, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bcadd701-1037-42e7-8188-4c8bd1823d1a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,088][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:165669765-2000427313#5343, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,161][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2107161679-1386116225#5344, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a460556e-88fa-410d-8215-8504beb28506, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,165][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1444287480-543377788#5345, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,226][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:922823120-1386116225#5346, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7f11c6b8-c59e-4075-a2f0-04ac944a96f3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,229][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:256082363-1772931704#5347, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,318][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1404982936-1386116225#5348, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f4cb0ffc-4534-4c0f-93d0-542dcf12f0c4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,328][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1833937558-2123542749#5349, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,419][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1910659709-1386116225#5350, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f424fc70-014f-41b1-a0d7-cd5d547bec9b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,424][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1355401295-1086505946#5351, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,433][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:847055217-1287131747#5352, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:06,451][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2054984793-297519590#5359, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:06,517][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:584269259-833697188#5374, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:06,547][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:733841223-1386116225#5376, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=52a029d5-715a-432f-911b-13ea6ddeccf1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,551][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1223623167-1450849053#5377, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,582][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1117534783-1549574249#5378, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:06,603][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:325564157--52387744#5383, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:59:06,665][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:685894719-193951454#5384, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:06,671][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:15791643-1386116225#5387, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8e8513f8-2cf9-418c-ae64-7ffec59c987e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,678][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1202769661-2002833165#5390, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,764][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1879435303-1386116225#5391, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3de40cea-8aad-4c1c-8123-249df7ebd2e1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,768][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2009237522-910456625#5392, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,837][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1202576979-1386116225#5393, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=174e0232-6373-4015-be93-d793d6933c77, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,842][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:414597713-2077743949#5394, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,917][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1858062073-1386116225#5395, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9c796f75-1e6b-4f7a-80ad-e92430e87b3e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,920][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1204408891-1841804377#5396, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:06,990][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:680466207-1386116225#5397, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f0ae80d1-c216-46b4-9ec1-23947a6887a4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:06,995][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:949454073-835113434#5398, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,066][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1634979527-1386116225#5399, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=262e9ecc-9eec-47d4-a610-e6cd6cd725d7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,073][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:831785497-899739806#5400, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,146][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:854568945-1386116225#5401, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dab74fc5-ef62-4c91-be3c-6a67eeaf1b5c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,151][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1301629597-1556108788#5402, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,223][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1851161330-1386116225#5403, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=af1349f0-7616-48a4-8b6e-0910365c1bb9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,226][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:554291438-1185921008#5404, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,294][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:413017380-1386116225#5405, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=308f98d9-71d9-4814-99ec-0ffbe21f247c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,298][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1161973039-715353033#5406, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,358][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:294144346-1386116225#5407, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=db9dadb6-5bd6-4919-97b2-e43b8b9a9dde, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,363][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2027354442-799733834#5408, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,447][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:510014293-1386116225#5409, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fc087d87-4385-4a60-9c08-97a07275c249, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,451][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1308064602-44357383#5410, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,542][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2050230193-1386116225#5411, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f1511355-e362-41de-a988-6318be4e69af, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,546][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1432842041-591197028#5412, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,619][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:126096619-1386116225#5413, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=052276e2-a4d9-450e-a247-9481b75cb49b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,622][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1566020133-866594833#5414, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,701][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2000962258-1386116225#5417, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=01b23fac-a774-49db-bd31-aab8402ac649, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,705][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1346380701-837244170#5418, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,774][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1003146399-1386116225#5419, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a280c6f6-b305-452b-a714-cb1a505c01d4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,778][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1858948070-1069601129#5420, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:881106078-1386116225#5421, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=056e1c80-31e3-4102-beb2-54d088f7afb9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,839][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1497825445-1574035984#5422, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,896][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1688419162-1386116225#5423, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1a9a156b-7b10-4abc-b18d-6951b6757fa0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,899][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1960000316-368074539#5424, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:07,962][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1206124263-1386116225#5425, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=36b66880-dff3-4cb0-b79b-524eacc2bcaf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:07,965][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:988247210-1459663377#5426, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,031][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1084143325-1386116225#5427, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d252deca-1e59-4fc6-9130-11c0e393bb98, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,035][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:408059119-428939627#5428, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,102][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1263771762-1386116225#5429, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=701a6115-0cfa-4363-8dd6-8b99a6b3a478, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,106][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2119094171-1970299321#5430, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,161][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1681617981-1386116225#5431, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1d34d809-61d4-44ac-b956-5cd15dad50e9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,164][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:842864888-981941043#5432, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,224][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1275918451-1386116225#5433, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd63eee3-35ec-4963-b7a0-7b64304454a2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,229][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1932130131-688507670#5434, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,289][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:718549927-1386116225#5435, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bec741ba-544f-4b70-8495-062f15808a36, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,292][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:19958254-1025467892#5436, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,368][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1512654906-1386116225#5437, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a4f9297a-765e-4d4f-9e0d-5f087b51b4dc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,371][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:317157978-44011684#5438, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,432][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:200506557-1386116225#5439, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a89dac70-940a-48d3-9052-b7278594c092, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,437][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1398134511-2055801725#5440, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,478][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:82689592-350956684#5441, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,510][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1777627728-1386116225#5443, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=31ce98c1-80ca-4db0-9664-1df1624d6e34, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,516][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1536446192-845232068#5444, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,611][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2133062216-1386116225#5445, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ca2ce461-5868-4e7d-9d93-e5fddb8aad3d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,615][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:898595086-1276465793#5446, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,633][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:854183982-471288016#5447, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,639][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:993054585-1274640199#5449, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2203.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2203, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,713][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2012320720-1386116225#5450, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=abd8c522-e90e-4ae9-b648-b4833e1421fa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,718][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:396402388-1504297511#5451, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,790][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1070465737-1386116225#5452, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ef3b8f47-1107-4ede-a51c-7207d128abdb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,794][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1146780147-1470040466#5453, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,856][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1085292988-1386116225#5454, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9bcdf8f6-2ed6-445d-ace8-f687699cf545, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,860][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:254266153-413511391#5455, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,921][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:937031616-1386116225#5456, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=db063746-0c9c-4762-befc-f6a89465cb22, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,925][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1965485350-1156128296#5457, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:08,988][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1905230652-1386116225#5458, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f175a5de-815e-4b33-84dc-ea0aba3e939c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:08,992][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:152051002-1260232419#5459, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,054][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1200210422-1386116225#5460, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c86153d8-b50b-42f2-988f-368d954bea5d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,057][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1242709080-1138885101#5461, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,117][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1680827892-1386116225#5462, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4d60bf5e-c3c3-44c8-9507-1a4297040d92, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,121][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1839242998-915120102#5463, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,185][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1697975731-1386116225#5464, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ea642bf0-cae8-4347-be7c-1829d9550729, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,188][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:929932982-286931267#5465, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:09,191][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2049627172-320123577#5466, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,264][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2039118738-1386116225#5467, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=41d5b350-a46f-43b1-b4a9-67eadb502fcd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,267][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:882882949-414761158#5468, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,343][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:772745234-1386116225#5469, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=475fb788-8bab-4a84-8ad3-5c0304a5012c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,346][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:74678442-1307136560#5470, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,402][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:319362491-1386116225#5471, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=efbc0447-079e-4727-bc93-65dc01e31de8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,405][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1150410864-1560239768#5472, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,443][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1623454422-1312228482#5473, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:09,460][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1375938926-319843495#5478, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:09,490][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1535176677-1386116225#5483, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d1d641ed-fa94-487d-9ce9-22ff98f689c9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,500][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:8363491-1269202940#5484, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,546][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1837888398-833148445#5485, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:09,557][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1296352590-1386116225#5486, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=552a79d9-fc8b-4fa7-9c1c-1a8c7053053b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,560][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:904202885-121669684#5487, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,650][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1882173183-1386116225#5488, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=04fb2946-a751-4b4a-a22d-87febf3aa084, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,654][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:455768833-101116867#5489, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,724][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:84202015-1386116225#5490, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2f8b329f-919a-4619-9090-e9c2975030f1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,729][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1896017731-1379229526#5491, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,805][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1409419386-1386116225#5492, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ba913096-bffc-4cbd-b22c-50f483e061af, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,808][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1318074040-680440030#5493, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,869][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1345951094-1386116225#5494, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b226b7c8-08ba-4ef9-bcb3-072b19077388, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,874][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:347866835-1532413706#5495, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,936][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:100893950-1386116225#5496, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=80d79256-1b6d-4a52-8c7c-cff0e2d30efb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,939][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:437072749-1861432417#5497, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:09,994][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:57724962-1386116225#5498, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8156c8e4-5f24-4189-bedd-5e162c647e39, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:09,998][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:424575174-1781223129#5499, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,073][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:487342017-1386116225#5500, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=706647ef-ed4f-49b8-a246-bef88014f90d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,077][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:410525058-1969088251#5501, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,145][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1169175311-1386116225#5502, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eb5f601e-387b-43c7-8eaf-cf33c0023de0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,149][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:968814159-1643278583#5503, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,209][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2063742988-1386116225#5504, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=838f13c2-4100-4b45-88f4-3d5a8c616045, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,213][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1064195112-1902905628#5505, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,273][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:57387534-1386116225#5506, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=671fcc51-0719-49b3-aa1d-bead39eee27a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,277][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1774395447-608298547#5507, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,340][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:905199438-1386116225#5508, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3fa96753-ab00-4465-88a1-b2c566c03684, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,344][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1796331556-455319529#5509, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,413][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:821596864-1386116225#5510, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=814d43a5-4ae7-44ae-a158-aa4c847aa188, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,417][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:610452958-1104669070#5511, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,489][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1175251594-1386116225#5512, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6e6ed902-7cf0-4254-98a3-479ad8cf71a6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:840310297-6840752#5513, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,560][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2114806698-1386116225#5514, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f67d1db3-a759-4769-ba5c-b8d32500a798, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,564][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1601478235-1561376122#5515, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,625][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:506870409-1386116225#5516, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8c6d811e-7085-44f1-831c-889282f429ed, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:196287190-1884212157#5521, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,710][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:674040747-1386116225#5522, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=32ae96f5-a0ee-4301-9ed0-383616e1fd52, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,714][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:123772501-337002949#5523, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,787][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:310600665-1386116225#5524, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8eb22ccb-7d33-4099-a8c5-a947f7c36fc7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,793][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1387479665-1369631812#5525, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,864][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2006747100-1386116225#5526, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9bde4c94-fc5f-4b2f-9aff-32d6b46dc568, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,868][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2114498397-912316967#5527, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,922][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1885786211-1386116225#5528, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=30ad01de-6139-42fe-bd42-5963a6ff6d09, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,925][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1675037652-1478369972#5529, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,979][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1755282034-784095946#5530, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:10,983][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1970171234-1386116225#5532, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c4fc1c9b-9006-46b5-bbe2-850c58f22afc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:10,987][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:975281119-1800722262#5533, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,051][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1556937465-1386116225#5534, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=890cfb61-eafd-4e50-964b-6d98e70601bf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,060][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:551013131-817037026#5535, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,129][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1326667768-1386116225#5536, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4f1baaa3-ddb1-407e-a455-83e2275ae858, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,133][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:108753992-1264119222#5537, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,195][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:53817050-1386116225#5538, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=89f018f3-6b05-4f7b-a839-b31ff2bf4f6e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,198][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1439299653-1923832304#5539, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,256][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:95831715-1386116225#5540, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ff96ee69-d5c4-43b0-957e-31c42c325715, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,259][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:791657177-597088215#5541, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,346][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1050046430-1386116225#5542, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3b181e5d-cecd-4dc4-bbdf-86a7c4e221fa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,350][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:965154864-298562089#5543, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,417][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1802457955-1386116225#5544, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e0eb36a0-e9fc-4500-8e03-2b9544c41296, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,420][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1130376123-1448965231#5545, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1090970410-1386116225#5546, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=57f411c0-25ec-4e14-b184-24266334a3ea, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,496][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1469755404-453777964#5547, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,567][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1983002359-1386116225#5548, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3d70cc1b-58c3-48c7-896e-f9d47a835bad, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,571][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1509148421-1680883288#5549, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,651][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2069323632-1386116225#5550, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=43198879-c67d-4f65-9cb4-686113b6bffe, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,655][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1722349570-495862657#5551, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,720][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1790111538-1386116225#5552, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=720b0086-601a-4424-ac44-25ec61409b19, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,726][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1518494938-1067795244#5553, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,798][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:484134653-1386116225#5554, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fd087a1c-6ec1-415c-9646-c62c69481c26, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,802][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:510444594-1905331765#5555, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,873][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2067351071-1386116225#5556, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1623b32a-cb8e-4a5c-a363-08091adae060, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,877][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:956039273-760584313#5557, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:11,937][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:978598615-1386116225#5558, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3e0cef59-1f29-4752-b7f0-8308f7474e04, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:11,942][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1440777397-746182810#5559, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,012][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:816856295-1386116225#5560, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d5b3fc92-c705-44d4-9466-a4de6df1369f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,016][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1952348724-1967764118#5561, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,092][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:724122276-1386116225#5562, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8f5d99a3-ddf5-4816-9709-3df50f4e39c2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,097][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:610092454-1182987455#5563, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,172][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2027325960-1386116225#5564, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=01ca1876-4309-498f-9b52-92c41758f805, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,175][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1099606401-2045734436#5565, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,240][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1036056022-1386116225#5566, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=74d6454b-0e2c-4a7d-8fc1-1ea2840f2609, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,244][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:928081098-1713854867#5567, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,322][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:203862413-1386116225#5568, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b39b307d-2a84-4c07-b108-5fbc6f2c3254, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,327][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1920279159-1894382675#5569, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,415][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1857574583-1386116225#5570, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1386d1e8-4908-44af-ad47-fcfb49735228, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,418][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1285730736-278237814#5571, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,440][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1830666978-541449775#5572, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:12,471][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2095844944-350754077#5579, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:12,494][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:586291106-1386116225#5587, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bed8b45d-3514-4c2f-802b-00a493534168, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,503][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1276790863-1842295462#5592, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,555][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1909272513-833697188#5596, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:12,595][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:405153903-1386116225#5598, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2da9bd8b-6c6a-4fd5-8374-d3e4d3426f14, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,599][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:626625560-1000333516#5599, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:802271003-939142663#5600, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:12,656][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:565532735--52387744#5606, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:59:12,658][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1579834796--53075430#5605, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,675][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:219463504-1386116225#5610, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0372a58e-25d2-4de6-943f-ba7e9aaa00c6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,678][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:452419365-947687959#5611, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,712][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1578113289-1381754970#5612, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:12,755][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1063904855-1386116225#5617, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0ad69e1c-7c3d-4f46-a85d-3b9a6aedd9b1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,758][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1920305987-784683824#5618, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,848][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:371573893-1386116225#5619, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9321dd78-b64a-4346-8ccd-cdabb4d2bffc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,851][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1891880880-2111299786#5620, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:12,938][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:500826846-1386116225#5621, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6206caed-2fb1-444e-bbfe-225f0ab83319, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:12,943][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:598102944-662624311#5622, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,018][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:891080714-1386116225#5623, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6b9ed291-1050-4a99-bca5-1d4c3112849d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,022][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:446115052-1266282729#5624, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,090][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1169675168-1386116225#5625, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6a36fed7-e405-45fb-a644-bf77f85ec841, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,093][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1938209700-317798073#5626, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,159][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2098079359-1386116225#5627, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e4256391-5e3e-43cc-b4ac-24290cbe1ca7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,163][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:832735303-903403554#5628, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,242][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:806295538-1386116225#5629, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5b258adb-be93-49dc-82f6-1f55f1f29645, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,247][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1933909670-1754970761#5630, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,345][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1665146233-1386116225#5631, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7609a53f-8c89-4650-913d-9483f53a40dc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,350][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1306519405-1043672892#5632, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,430][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:403826786-1386116225#5633, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=32c2524e-1e84-4ee6-aac8-ab303335cb30, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,438][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1700705906-1487738530#5634, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,480][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1786476117-2107701481#5635, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,532][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:337643713-1386116225#5637, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aeb52e72-217a-49a5-a837-110fbb79ec68, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,537][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1834822665-1567960838#5638, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,615][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1549286704-1386116225#5639, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1e119485-a7f5-4383-bcbc-848b7596278c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,618][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1812800291-378599931#5640, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,692][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1066424343-1386116225#5641, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8a6696e1-ff13-413c-9ba9-bbb4a912f176, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,695][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:313111108-1724953096#5642, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,757][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:676717951-1386116225#5643, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=670c8065-e25a-4adf-b2d8-3773645123b1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,760][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1673626058-1922032488#5644, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,821][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1009223348-1386116225#5649, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=738e3d3c-09e1-438c-bbff-ae361d389ccb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,824][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:762008815-1313399736#5650, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,885][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:562793917-1386116225#5655, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3c01bc1c-ae7f-4b91-b36e-8692c518972a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,889][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:560526442-745658252#5656, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:13,992][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:484850043-1386116225#5657, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d37a231e-383f-4210-ab99-55f95396dfc1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:13,996][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1539977921-1385582371#5658, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,101][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:455039365-1386116225#5659, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4981d3a3-44d9-4243-bb57-e8b22ba9a28d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,106][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:884681407-383010323#5660, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,173][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:453869172-1386116225#5661, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=432626b7-a2dc-4df3-b85b-c53cf1925832, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,177][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:478290482-2089654742#5662, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,211][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:286177834-626954950#5663, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:14,247][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1721167565-1386116225#5664, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b35ff25b-4eed-4bbf-84e3-635b26595724, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:683718637-940824586#5665, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,320][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1268137605-1386116225#5666, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=556bfa33-4e53-4711-b1a3-a5967d60bfcc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,325][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1546189512-221354793#5667, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,414][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:707036419-1386116225#5668, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a8d391c6-5cb7-4a8e-8b9b-af4750901bad, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,418][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:543369917-110519603#5669, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,481][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1512747245-1386116225#5670, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3acbebc4-3b6d-432f-8c55-bfb1965579cd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,484][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:494088595-479861191#5671, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,552][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:194764259-1386116225#5672, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4a4e3f95-e845-428e-be3d-ae49a4bbfce5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,556][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:622198315-278902855#5673, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,573][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1904453635-2130786221#5674, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:14,633][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1889754488-1386116225#5677, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d9d8bc37-545c-4c76-b518-14196ed65800, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,637][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:342158446-1484561156#5678, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,706][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:620950090-1386116225#5679, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=56ae6e63-84da-4dfa-acc3-41861f35cd6b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,711][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1376965254-1067586819#5680, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,776][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1236108633-1386116225#5681, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7cb5df7a-be54-45ec-93cc-ccf14c791c41, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,780][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:211192069-814651176#5682, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,867][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1072131998-1386116225#5683, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e55ee10c-7821-4338-a887-c27b6b57e445, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,871][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1951196509-1533672666#5684, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:14,935][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1430629767-1386116225#5685, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8426a6f6-3d8d-4177-a5fc-b37ee793ebcb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:14,939][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1661966355-670856333#5686, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,008][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1743230407-1386116225#5687, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1d57df51-dc06-4f21-b293-dac0f8a1b0e8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,012][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:873007906-538095189#5688, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,080][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1111839535-1386116225#5691, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=db42139f-e584-4e48-bbe0-f898cd80c199, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,083][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1069708612-2078156333#5692, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,152][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1180327782-1386116225#5693, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1b1e202e-27af-48bb-827c-13a7a0bcc5a2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,157][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:133329519-849806530#5694, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,226][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1040972735-1386116225#5695, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f0d9bfdb-7553-4e06-9662-813e8f43f9af, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,229][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:509816711-344362280#5696, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,292][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1696139284-1386116225#5697, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ba36f538-0293-4c07-8f61-efbcf857be41, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,295][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:15983837-184054037#5698, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,358][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:229499827-1386116225#5701, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ba64f079-99d7-4d63-80a7-4c57db8484d5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,362][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:232810714-758078339#5702, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,425][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:421018639-1386116225#5703, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a9887be0-a166-4858-841d-6cc340a3f172, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,429][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:845518839-2069641335#5704, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,450][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1313283870-349385565#5705, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:15,464][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1370916486-1217528399#5710, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:15,500][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2016410256-1386116225#5715, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=327f5ed1-c4c4-46f0-a490-0d2b99194d34, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,503][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:482126413-1920536764#5716, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,565][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1432028201-1386116225#5717, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7f25b887-6d9f-4342-9298-0cbe407cb968, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,571][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:387852995-1330037269#5718, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,629][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:923387210-1386116225#5719, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cfe0e425-5bfd-417a-a8f3-40ef708ade1d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,633][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:919725938-211283428#5720, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,699][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1873375200-1386116225#5721, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=76179041-c7e3-4a2f-84f1-7c7a1aa12a20, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,702][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1790543495-328640431#5722, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,768][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1750463487-1386116225#5723, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=efadc1b7-1bc2-403b-9b39-0ea0c1bea8c3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,772][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:717564120-420354217#5724, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,862][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1705171088-1386116225#5725, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6b98b7c7-4343-4213-b145-738381eb329d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,866][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1067788465-422075189#5726, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,945][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:477651707-1386116225#5727, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=07fa2dab-ad83-446e-a4ad-8cef9d29d97b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:15,948][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:447230752-1930079116#5728, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:15,981][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1711072764-1045883781#5729, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,019][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:940230907-1386116225#5731, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9c993d2e-8390-485a-b65b-8b65fe8b6777, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,023][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1698491996-1129086908#5732, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,105][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2139557390-1386116225#5735, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e3c1f4da-5ca3-43aa-957e-8f1247f75812, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,110][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1092460844-1218342985#5736, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,202][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:210911030-1386116225#5737, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c76412c0-6c94-4323-b8c5-60c062a5f182, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,206][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1246902536-1791168097#5738, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,275][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1403186149-1386116225#5739, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3c50035a-7ed5-41fc-96f5-113f1167b1af, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,279][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1190905556-2103245434#5740, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,360][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1031912570-1386116225#5741, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=40f865a0-ae1c-4cf6-bdd1-3fc37aed2e2d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,366][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:647829152-1423942676#5742, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,425][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2050044602-1386116225#5743, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3a900cfc-9f7f-44b1-b0b8-57617a2c4fba, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,428][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1275729213-1444915692#5744, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,501][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1741150533-1386116225#5745, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cb2b1c5e-43ff-4850-9f95-ba7c87842d73, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,506][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:756039027-116105716#5746, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,610][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:595524507-1386116225#5749, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d72bc2d2-d769-4569-b60b-cbff2d0a0ee5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,614][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1781265031-1872942740#5750, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,686][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:321708514-1386116225#5751, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0d8b9d2e-793c-41ea-ae47-594d0d637829, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,691][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2089043697-1260559224#5752, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,770][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1618720223-1386116225#5753, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9d783a7e-e805-49e2-8c47-f5c075bab78b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,775][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2116613969-130521206#5754, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,839][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:967787876-1386116225#5755, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2741c104-8758-438e-b91d-9167d31d147e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,842][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1504376241-109862055#5756, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,907][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1834603497-1386116225#5757, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d0c1c276-a65e-4020-9316-0bb3bc2b1198, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,911][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1059561816-77109986#5758, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:16,992][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:428743761-1386116225#5759, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d9c58884-b652-4c5e-a155-48cf54a104e1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:16,995][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:177332413-1847389228#5760, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,071][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:619087858-1386116225#5761, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=53707a21-23a5-4d50-895f-d2e5b593a8e7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,075][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1823718870-742159656#5762, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,153][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1738633839-1386116225#5763, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ce2ad78b-b31b-4688-95f5-f2a7f10be592, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,157][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:690879514-542705823#5764, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,233][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1145316329-1386116225#5765, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b360ffd2-28e7-4117-83b9-f61051494f39, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,237][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1375034447-506455660#5766, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,297][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:759288740-1386116225#5767, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1f63c4cc-8609-42a5-84ce-b9b278ab3002, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,300][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1487148191-810672868#5768, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,368][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:879238533-1386116225#5769, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aefcc240-933c-43f9-b2ae-6b91ded4ed04, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,371][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1262344069-717243400#5770, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,426][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:395781215-1386116225#5771, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bf74f4a7-ee28-41f6-99e1-0f1257d6d413, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,430][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1379450147-1841378114#5772, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,506][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1789241620-1386116225#5773, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9784004c-416a-4f3c-a7c9-c62527bd7c3e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,510][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1222987904-1621998992#5774, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,576][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:170529842-1386116225#5775, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=94ef537b-dbe7-4d6c-8fd1-1c0c5e37ed21, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,580][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2011944195-324314015#5776, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,649][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2119869639-1386116225#5777, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5b080c8c-ae0d-40a1-b686-c22c87d15e80, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,653][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1901559845-2090590882#5778, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,724][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1354879631-1386116225#5783, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2b3e7aa3-e7c3-49ca-bb03-70f409871f49, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,728][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1441883135-1670347397#5784, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,805][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:392899722-1386116225#5785, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c63f3486-1826-4884-b503-530b890f6e72, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:781486201-230289915#5786, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,877][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1304048081-1386116225#5787, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9703ee75-f487-4696-bba7-69ceed30e628, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,881][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1401525544-1271568014#5788, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:17,958][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1726859325-1386116225#5789, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5fa986d8-b7a5-4561-b729-dcde43b98185, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:17,962][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1100417230-65212206#5790, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,024][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:946219973-1386116225#5791, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f49822ee-275e-4698-a189-41919673e7b7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,027][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:484240047-62742876#5792, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,085][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1990680383-1386116225#5793, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c3dfe9c2-b268-49ec-9033-befa00851f13, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,092][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2048252061-1628709518#5794, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,146][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1787808899-1386116225#5795, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=456383b2-df97-4e47-bc9a-20b1360c5830, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,149][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:451294609-1916338192#5796, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,205][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1655397839-1386116225#5801, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e32108ba-ff69-45d4-b9ab-6984625f05f5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,208][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:649916410-1719450097#5802, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,270][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1805281884-1386116225#5803, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2212d813-4bae-4666-945b-800dff43fee7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,273][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1293767186-2006905377#5804, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,334][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:654876343-1386116225#5805, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7046dab0-6b2d-4a50-b176-daca089a1d8c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,341][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:916193303-892113924#5806, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,343][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:863483137-185258885#5807, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,422][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:863670322-1386116225#5808, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6906074c-53c4-4f6e-b074-0aff8206956c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,426][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:310824305-302590714#5809, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,447][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:256863586-1871565888#5810, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:18,482][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1649078663-1825774495#5817, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:18,486][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1424211910-243448337#5820, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,509][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1348754892-1386116225#5827, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eee179c0-b077-4593-b7ce-f9f678777e8d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,515][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:115266613-488092877#5833, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,546][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:729067068-833697188#5836, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:18,598][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1580545404-1386116225#5838, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ad6d25c6-108f-4f53-a147-8705d4c233ad, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,601][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:916421368-1175486306#5839, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,610][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:66995140-1684187273#5840, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:18,622][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:379192308--52387744#5845, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:59:18,635][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1634949774-283297031#5846, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,646][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1630867826-670448387#5848, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2200.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2200, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,681][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1546302041-1516670502#5849, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:18,686][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:319924889-1386116225#5852, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0f724d6f-3c55-4f09-b659-76827ba0396c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,691][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1719732913-1745509651#5855, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,776][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:95004123-1386116225#5856, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6de24cc-8ece-4ae0-8643-014ae249d64f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,779][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:630170192-1612788460#5857, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,864][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:202929997-1386116225#5858, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=224c9d2d-d979-4422-87c0-db201c3317fc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,870][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:236681435-885219022#5859, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:18,959][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1658965846-1386116225#5860, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c8be282b-cf4a-42a2-8bbf-eee30b5df310, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:18,963][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1820780324-98115082#5861, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,046][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2084234481-1386116225#5862, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4b52decd-fa8e-43cb-a93f-e0c6b8cfc534, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,049][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1355899850-2127192624#5863, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,119][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:880083408-1386116225#5864, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0365102c-8794-439a-a17a-b28a7bde5fce, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,122][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:632161546-1749706491#5865, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,208][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2073606668-1386116225#5870, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aac0ba96-216d-4cb2-b8da-11042c9b4c8f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,211][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:870221579-514369698#5871, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,240][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1266382888-1891480066#5872, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:19,299][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:393171286-1386116225#5873, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=250ced3a-417f-4017-b62b-d5142aa30e52, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,303][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:924620225-1823135288#5874, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,381][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1012474406-1386116225#5875, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=936e2edd-d833-4cf1-a162-46a49914af10, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,385][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2088782269-1638975885#5876, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,446][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:549380092-1386116225#5877, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c6faad40-5047-4673-a95e-53592948d209, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,451][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:844229351-150004099#5878, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,530][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:508057917-1386116225#5879, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ee6fddd8-a88f-4c88-9cc6-51c437408669, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,545][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1984142465-291037029#5880, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,598][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1941986883-108857871#5881, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:19,599][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:753076603--689251507#5882, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=407.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=407, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,628][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1349149699-1386116225#5884, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7551fa57-d6a0-4a67-b851-b86838696d31, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,638][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:588257693-1230847722#5885, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,732][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:213339778-1386116225#5886, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fe8d35b3-09b6-41b5-97bd-105bc0366ad2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,737][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:506028883-708118844#5887, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2113153809-1386116225#5888, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=97df8563-0588-444e-bab6-b867f0d1b476, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,822][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:164241686-700507307#5889, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,895][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:330787794-1386116225#5890, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4883c742-84ac-46d7-9ea5-343d4ed81a67, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,899][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2082879803-2128126826#5891, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:19,962][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:276713435-1386116225#5892, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c43ac47a-a970-44f3-bc9b-a3ef9b8f1953, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:19,966][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:641920822-134849257#5893, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,032][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:646696968-1386116225#5894, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3f86f8f3-651e-43e8-b21e-ef1c3997ea0a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,036][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1168878898-2119406878#5895, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,096][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2054937451-1386116225#5896, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1a433cf3-c531-48c2-ba7f-be148bcd29a1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,099][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1339686589-176296773#5897, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,165][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1387972109-1386116225#5898, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d88e84c7-2a5e-4aa0-a601-8a8b2af5a2b1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,169][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:307821850-1883337002#5899, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,237][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:811096854-1386116225#5900, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8158e8cb-49d4-49cc-bbe3-66a87af9633e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,245][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1886209417-1794074874#5901, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,304][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1210832517-1386116225#5902, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e207449e-e1c6-4001-b333-f33efa2241df, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,307][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1057679504-1152980602#5903, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,367][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1815080040-1386116225#5904, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3da7c66e-cde9-47e5-86e9-4cdc64fed530, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,370][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1591886441-1339771383#5905, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,445][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1747043662-1386116225#5906, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=204d9933-ed26-4868-8c4d-801ce2bcba7f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,448][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:662529780-729530023#5907, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,509][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:450081719-1386116225#5908, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d495354b-de56-49cf-acbb-672b580095c7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,517][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1732661419-1917270341#5909, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,593][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:215662998-1386116225#5910, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=adf3976f-cbc4-487b-9ed5-179dae4fb27a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,597][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1044491071-1220130006#5911, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,665][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:528818377-1386116225#5912, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2794f466-b3dc-4052-a8f6-4fd5e5257b96, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,669][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:489645666-1449781651#5913, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,732][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2036899266-1386116225#5914, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d62d0619-35fc-4031-a429-6af329c67df4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,736][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1707255858-1624813400#5915, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,807][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2116142931-1386116225#5916, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c32223de-4e8f-4acb-8d97-91dd774a4c8c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,810][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:102947159-522095985#5917, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,886][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:606961520-1386116225#5918, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dc15eafa-09c7-4242-a623-3f89aa3d5b5c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,889][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1869428120-1256908098#5919, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,960][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:311988308-1386116225#5920, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=368f2be2-b254-49bf-909d-d0b4317a92e7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:20,964][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1511159081-831266335#5921, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:20,982][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:936062019-714477325#5922, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,030][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:799250760-1386116225#5924, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f0dc9894-e85e-405e-8f88-4322f705b22d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,034][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1667533899-843651806#5925, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,120][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1598605488-1386116225#5926, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=df9bd82c-115e-4f46-8166-55ff93eb1dab, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,125][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1544454624-1182405387#5927, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,233][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:282192598-1386116225#5928, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a30d3510-698f-4c88-9007-7f3417ea1f6b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,238][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:20695387-2078194760#5929, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,331][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1176355496-1386116225#5930, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=74df89f1-0866-4c91-b035-0fc818bc454e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,343][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1400320850-1157857404#5931, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,426][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1976003322-1386116225#5932, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e7b74c5b-c599-4f20-8271-4d21e7f6ec91, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,429][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:447604886-337591159#5933, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,453][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1688285082-425586197#5934, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:21,473][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:526927838-1352690750#5939, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:21,502][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1825776058-1386116225#5944, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=65df41ac-eb36-4ef8-a650-645d401f4b74, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,505][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1090155631-72385419#5945, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,569][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1942745516-1386116225#5946, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=af542d4b-bd97-4d22-b1dc-8840fc864aa0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,572][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1507549800-172565745#5947, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,643][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1542153727-1386116225#5948, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0afdcead-375c-44f6-82b0-964ea9b3427e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,647][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:428040411-424670395#5949, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,707][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:355816642-1386116225#5950, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=12e37b05-0ba6-4ebb-a592-35c4b43cc948, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,710][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:461704664-1479073013#5951, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,772][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1612605743-1386116225#5952, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b1bc8582-4653-44d7-9ca8-d2d78f790e4a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,775][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1521478291-1017325393#5953, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,848][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1291104785-1386116225#5954, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=77042479-94af-4127-aadc-1d12df660d66, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,851][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:268113616-288009390#5955, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:21,925][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1286664941-1386116225#5956, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=03a62314-2983-46a1-bcd9-f5627a117a4f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:21,928][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:888416106-298325770#5957, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,001][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1931226365-1386116225#5958, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5454d5f1-4b65-4a8c-8876-41c98692e943, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,004][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1179836021-39405005#5959, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,064][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1624794272-1386116225#5960, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ac060ec9-1606-4199-8397-7b35717f560c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:386137499-1185077302#5961, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,122][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:164963984-1386116225#5962, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=171d8190-0c82-422b-8a5a-4a6cc9443c77, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,126][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:382928865-1584156635#5963, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,190][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1111067357-1386116225#5964, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8930b48f-1afc-4b28-9fac-b5375af4eb6e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,193][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1443597992-104374071#5965, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1355824547-1386116225#5966, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c03d058f-6679-4f03-9af4-b34072434cf0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,255][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:148532254-888469577#5967, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,311][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1930346109-1386116225#5968, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e9f28957-0876-4f4e-ae7d-61ee7b8090ba, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,315][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1040211633-2089008993#5969, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1406134058-1386116225#5970, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b57ac5ae-a490-4aa1-b151-f55b41aad30d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,391][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:660772467-877073510#5971, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,465][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1563357420-1386116225#5972, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ccedb2c6-2c6b-4a87-8577-f91f07240192, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,468][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:143536521-1771568974#5973, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,538][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:205710287-1386116225#5974, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9aad4d65-bda4-435d-a45c-358317063d61, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,541][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1517628673-1453188621#5975, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,600][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:171526508-1386116225#5976, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6e0799ad-85c7-4fa0-9b1b-52f43f4d3f81, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,603][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:803641134-2036166675#5977, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,666][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:644028854-1386116225#5980, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=75fda46b-d648-4d68-9a62-3e2f4a5e4f6a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,670][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:179525404-866612681#5981, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,730][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:216015878-1386116225#5982, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e67c6eda-a866-4444-a664-5a41221723ed, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,733][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:686021492-976026515#5983, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,796][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:396878542-1386116225#5984, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=de44a0b4-57f0-4d53-8f88-e7dee6767fcb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,799][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:716656765-573989343#5985, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,874][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1469430655-1386116225#5986, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fb8e68fe-bfa5-4084-9bb7-a76619049c5c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,879][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:347616918-1234544625#5987, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:22,993][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1761982098-1386116225#5988, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b2d85440-a185-4316-8f5e-174925cd7d0b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:22,997][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1496396294-1209571430#5989, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,073][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1690857376-1386116225#5990, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9c9ab9e1-3002-413d-ace8-bd4bf25f59d1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,076][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:499194741-2031062291#5991, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,146][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1280393317-1386116225#5992, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3d3427af-36ae-4bb0-916c-154abf2b0e64, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,149][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:696135990-623462359#5993, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,211][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:920995027-1386116225#5994, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=98293c7f-f003-409c-a33e-4bc3b88135d6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,216][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:816249524-893685414#5995, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,290][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1913701819-1386116225#5996, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=db189837-5241-4578-b72a-2244169ab8b1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,295][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1835790009-43191100#5997, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,368][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1434583350-1386116225#5998, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cd3ff722-f64f-45b0-ac76-954291dee99a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,374][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:99037824-340241700#5999, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,451][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:320217483-1386116225#6000, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c846ebc3-67ed-4ea5-80df-2b7778be744f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,455][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:644585267-1018933801#6001, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,483][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:7664652-695420843#6002, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,514][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:256457958-1386116225#6004, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fcb157fd-3867-49d2-9344-b5096c5c1f7c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,518][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1406898105-839927057#6005, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,584][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2063601065-1386116225#6006, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=001bff81-5dad-40e3-84c0-dbf0bb3ac130, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,588][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:367199179-647909571#6007, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,658][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1045309518-1386116225#6008, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1fbcf527-a301-40e2-86a4-028f35d343dd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,661][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:691516910-431965460#6009, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,738][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:554229438-1386116225#6010, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fa095c6d-5339-49c9-b1f7-130a8181e57f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,742][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:340783283-1082372785#6011, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,804][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:943509271-1386116225#6012, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=10fcc24a-5abc-409d-8c5e-f61acc2f340c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,808][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1549417438-17898718#6013, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,868][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2132661435-1386116225#6014, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=059a1024-043c-4946-aa52-fa1d57826122, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,872][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:705239233-1097258677#6015, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:23,934][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1229523154-1386116225#6016, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=be2804eb-850e-4c5b-9509-cfee53a05c91, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:23,939][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1282376076-1158779699#6017, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:24,001][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1321684786-1386116225#6018, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0a3afc6c-a54b-47a0-98cb-86336c5685b4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,004][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:658265152-1343815020#6019, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:24,068][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:274560394-1386116225#6020, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7c3dbf6d-0a7a-4da6-9b7b-ea947ab92075, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,071][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1615553794-696973875#6021, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:24,140][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:24433462-1386116225#6022, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=90148480-f1ab-4140-ac5f-424d9e2ee313, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,149][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1825645846-2067089021#6023, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:24,213][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:8012882-1386116225#6024, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e7469bff-21a2-494a-9125-2c3ecb71e063, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,216][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1089298284-1044938272#6025, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:24,260][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1532237162-176400083#6026, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:24,299][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1957701040-1386116225#6027, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9a275fa1-612c-4216-829c-e715681055cf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,304][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:541036240-1576754569#6028, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:24,374][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:255524745-1386116225#6029, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4e65fc0e-1b78-4037-9128-3d48185f1fea, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,379][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:645921817-836592443#6030, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:24,444][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1382411763-1877336389#6031, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:24,459][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:678457403-1386116225#6036, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1e39d305-e1b6-4a3f-86ca-bf66bbfd5b43, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,467][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2113357204-558643645#6037, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:24,495][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1456857479-976314339#6040, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:24,555][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2063264179-1386116225#6053, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=19442b4a-6f75-461c-9580-49640477bf71, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,559][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1035562158-1741587244#6056, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:24,625][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:261283577-1468841525#6057, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:24,626][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:518954891-833697188#6058, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:24,690][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2086071639-1386116225#6060, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8ac2c8ca-44b1-4b86-95e0-b50b7dfdc5c1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,695][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:772806130-1488638082#6062, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:24,695][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1363944479-1211125209#6061, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:24,721][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1274998618--53075430#6067, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,755][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2055159804--52387744#6069, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:59:24,787][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:831015345-22347587#6070, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:24,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1262498869-1386116225#6075, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e5491bbb-30d4-48d4-b27d-f473a7b4f910, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,823][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1220768382-997551894#6076, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:24,916][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:503132636-1386116225#6077, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=52d07fce-9e88-4fb8-904b-a2f83fa7629d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:24,921][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1473667018-72714188#6078, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,011][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:340280719-1386116225#6079, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b12c4ebd-62ff-4612-9a65-fbd68be7e838, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,016][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1615852811-92458695#6080, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,109][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:767640156-1386116225#6081, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a1235ff0-de02-48e8-b740-4f8c1c078ec1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,115][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2071141974-1678461854#6082, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,212][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2011972910-1386116225#6083, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0ac9c071-b838-4e29-9a2c-a08a7232f98d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,217][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1343765037-872030166#6084, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,302][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:227800460-1386116225#6085, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=31965b67-d63a-47cf-b60b-f0d490d835f9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,307][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:407045157-152804434#6086, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,377][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1794909704-1386116225#6087, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b7f5a307-f1c3-45b4-94c2-faa119811266, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,381][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2018607438-2016661581#6088, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,461][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:765409813-1386116225#6089, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6108ca55-7873-4499-9a22-34634c539937, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,464][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:651724232-1391930284#6090, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,531][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:874522631-1386116225#6091, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9c7adcd0-595d-4d7a-8821-110c125b6b72, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,534][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1614541572-36686862#6092, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,613][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1768832428-1386116225#6093, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a77e5777-d2d7-4351-a3c1-6402e63e4573, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,624][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1547387030-1663515590#6094, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,712][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:529847312-1386116225#6095, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=da1be890-ae7c-4fbb-81db-97fc380dda66, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,715][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:118425875-28755604#6096, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,790][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1536500847-1386116225#6097, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d5f14cba-d617-4ae3-acec-13c5f216a847, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,794][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1645760345-488670616#6098, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,852][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:714437326-1386116225#6099, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4f3755a5-e1d7-457d-b2b5-1efcb21fcfb4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,855][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1490128303-2022925163#6100, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,915][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1627792804-1386116225#6101, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9d9540f6-09f4-4302-ba21-37b1e383a877, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,919][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1460132047-134016142#6102, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,978][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1190875713-1386116225#6103, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=24bf9106-34f2-4da8-a1ea-26b411bdfb5f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:25,982][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:296268657-2021703723#6104, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:25,998][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:418958121-76409645#6105, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,040][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1349186550-1386116225#6107, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c4d4093b-402c-4d07-967d-45a785c6d319, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,044][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:781574216-1886046000#6108, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,109][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:458595987-1386116225#6109, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1bfee79f-cff8-4471-b337-6490f0f48e1d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,117][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:480721740-498147120#6110, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,177][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1002703089-1386116225#6111, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7e1ff012-4948-4a7c-af45-1204511f66f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,187][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:206743580-696946561#6112, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,241][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1012354335-1386116225#6113, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=722ef8ef-2eda-4aae-8b97-ac1a05b9e11c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,244][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:667896292-1044649801#6114, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,313][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1129279879-1386116225#6115, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=50ef8865-8256-4a30-92f7-3fc5bbde0149, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,316][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1173812036-405471863#6116, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:105623652-1386116225#6117, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ebf12f3a-0ac0-4274-bf3b-f0bed47a1efe, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,391][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1051736675-1286504994#6118, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,476][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1746475965-1386116225#6119, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=77b97dc3-9490-4fdf-ad1b-68d3ac9535ad, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,480][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1352547086-1824519614#6120, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,553][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:294083917-1386116225#6121, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=669b6ddb-735f-43ad-aa15-6d8e1379f2c6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,556][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:836991027-268727114#6122, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,621][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:59078385-1386116225#6123, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4fc99301-1bd3-45f5-b998-a3084d235f62, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,624][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:675491577-38533410#6124, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,685][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:828789762-1386116225#6125, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=240dbc51-a130-414d-9126-d61898a41dde, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,689][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:427597345-687427345#6126, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,759][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1973825989-1386116225#6127, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8af8f43e-dc30-4516-baa4-215e609ea67f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,764][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1986247991-185837644#6128, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,838][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1777401848-1386116225#6129, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e872a233-221a-4c90-be77-7c3241a3b93f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,842][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:765252378-1182615963#6130, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,903][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1346029776-1386116225#6131, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f50ff9c8-6f8f-46f2-9875-4c3b01fbbd57, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,906][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1046209040-1964307138#6132, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:26,970][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1493781610-1386116225#6133, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=00d1a904-9b88-48d6-b066-a9b7f2f08bb4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:26,972][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1601397715-1046040911#6134, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,035][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1820927652-1386116225#6135, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=406dfbb2-af60-4ce7-a9ce-cb74394e4b9b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,039][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2138066243-995742853#6136, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,125][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1342056840-1386116225#6137, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=184e9afe-938b-445b-8986-53f17a2775ed, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,128][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1793563349-385927327#6138, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,197][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1644743430-1386116225#6139, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c053b54c-a99e-48d7-b7cc-cdc21b2e8f3c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,201][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1543769254-182650049#6140, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,267][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:464937266-1386116225#6141, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8f5455bd-bb95-4209-b73a-ca12e36164e7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,271][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1061345721-1130333131#6142, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,333][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1359495789-1386116225#6143, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dcf77bda-e97b-465d-9d63-c7caac0bce3a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,336][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2040469135-1345951508#6144, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,411][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1875318531-1386116225#6145, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c5cdca3f-1ce4-491b-b725-80d2e946d553, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,414][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2085563324-2103800276#6146, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,444][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1430708733-264581532#6147, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:27,482][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1643698267-1386116225#6160, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5642ef73-31d7-4e35-a602-4466fabba713, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,485][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:919647336-860322757#6161, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:202941167-833697188#6164, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:27,499][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1145676852-123717634#6166, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:27,551][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1702512552-1114071388#6171, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=1086.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=1086, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:27,558][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1898446476-1386116225#6176, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6568467-1e60-49a5-b48b-4210c1d1b4a2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,561][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2041981502-1321629095#6177, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,564][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:463780091-1519478014#6178, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/endpoint:user-artifact-manifest:endpoint-manifest-v1, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,579][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:928153762-944560955#6180, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=396.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=396, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,622][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2035272538-836823447#6182, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=910.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=910, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:27,644][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1282857281-1386116225#6187, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6d8d2220-498b-4f91-8c1b-94aa81ad9051, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,648][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1870796797-1745880140#6188, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,716][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1577776264-1386116225#6191, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=18b835b8-b994-4a75-9f8e-de03b699510a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,720][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:608994009-1536050258#6192, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,806][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:861145355-1386116225#6193, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=00116766-80fd-4b8d-9f85-ac14faea8d8a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,810][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:980620637-2053706368#6194, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,887][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1399616843-1386116225#6195, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bcc8f454-c840-4ae0-a38e-b045147ec1b2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,891][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1088631420-1645743808#6196, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:27,956][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1347943697-1386116225#6197, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ae5e7692-bfb2-4819-8862-a835c6a3dab0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:27,960][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1621171325-956871367#6198, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,014][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:457491752-1386116225#6199, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a717a729-ef0a-4642-87a2-d91f985b696c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,018][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1947474980-473867311#6200, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,073][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1616688101-1386116225#6201, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e3a5a08f-16e1-4877-ab01-f68ca1d89a67, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,076][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1569474371-162366954#6202, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,140][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1616598828-1386116225#6203, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=741343c7-b3bc-426f-a0e0-c35e6720e7b3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,143][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1704788825-1511319286#6204, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,215][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1064549003-1386116225#6205, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=64ded80b-4254-4165-9286-6de6a2f39b82, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,219][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:86734974-136393801#6206, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,283][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1979666669-1386116225#6207, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=00ce53c1-7a74-42b7-8eb5-5e4d23c1e034, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,286][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1467620155-164393250#6208, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,360][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:147754798-1386116225#6209, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f508f9f1-6ca5-4c8d-8be9-e3f535c614f0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,365][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:121233122-1949437#6210, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,423][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1781697213-1386116225#6211, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b4aec029-e43b-47e5-9a93-522a2f8ec4d0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,426][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:377085738-1602149833#6212, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,485][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:347635508-1023506687#6213, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,489][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1146437824-1386116225#6215, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e5bdf37d-1ba7-42c1-a7dc-55f38ff37a64, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,493][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:187883846-1554280139#6216, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,561][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1783898912-1386116225#6217, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ed7de969-2f0a-4027-ba80-ea8c740ecc0c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,565][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:82394602-416138464#6218, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,623][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1734357764-1386116225#6219, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=24673f3f-3308-43e5-af1a-c27c7d930679, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,626][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:753287659-1630351344#6220, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,645][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:389094897-1898968064#6221, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,651][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1876433623-1728248435#6223, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2167.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2167, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,687][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2017705463-1386116225#6224, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=daed1754-d68c-4f92-8109-461777829192, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,690][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1984092427-1499691958#6225, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,746][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:700629899-1386116225#6226, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=836b8913-426e-4fd7-97cb-149fc8d292fb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,749][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1284206401-744586586#6227, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,806][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1855790507-1386116225#6228, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b2b44010-410b-433d-9e8b-edb85dfeb71b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1367098728-1176160609#6229, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,869][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1630988117-1386116225#6230, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d56117b4-6105-4c2c-8810-9b38d10527cd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,872][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1732300445-1411678232#6231, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:28,950][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1155861052-1386116225#6232, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=631d0aff-56da-4552-9bea-1473575267f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:28,953][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:314524090-1936347478#6233, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,009][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:62794595-1386116225#6234, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=32d81800-36ac-4e2c-b4af-a6745073e543, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,013][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1868985794-121395973#6235, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,072][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:645745237-1386116225#6236, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a3c210b8-77f7-487e-8f1c-05f3dc8fdb7a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,075][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1416272074-150876128#6237, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,147][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1837083017-1386116225#6238, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a4aea3f1-d644-473d-b6cd-7fd08336c00f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,151][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:563902865-565189024#6239, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,219][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1481155417-1386116225#6240, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=221ccc1b-d5c3-49c7-9afe-9b49b2401193, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,222][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1214999096-184144469#6241, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,272][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1408238492-706137656#6242, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:29,297][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:732280755-1386116225#6243, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f0b18983-4e6c-4769-871a-402beffaec4a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,301][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:912952309-633540010#6244, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,374][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1634474045-1386116225#6245, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9b8e4132-0fb2-488f-8dee-60d84d42f015, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,377][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1735537548-94714292#6246, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,446][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:943114999-1386116225#6247, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2006da30-2251-4344-89ba-6719f99f960a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,450][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:958042172-1333934784#6248, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,517][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1673974301-1386116225#6249, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=492602be-13d0-48be-905c-24adbdea1b15, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,520][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1831460320-14629641#6250, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,589][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1582650856-1386116225#6251, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3b251313-6ce7-430b-803e-5625083d6b54, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,599][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:198582789-674445378#6252, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,649][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1372408126-625196282#6253, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:29,671][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:524248157-1386116225#6254, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5c39b160-eaf0-4331-a28f-f46fa3b81027, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,674][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:780123856-356554392#6255, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,735][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:761027750-1386116225#6256, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7fed6f50-e01b-4371-8b43-e8eea3ede6eb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,738][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1235605724-444556806#6257, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,805][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:194692999-1386116225#6258, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ea2398bf-52c3-410b-a0fb-5005340e68c6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1147933502-594034775#6259, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,873][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1120296298-1386116225#6260, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1616c306-8c21-4fcb-8d56-24ae4554c150, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,877][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1516739746-716879753#6261, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:29,960][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1561506264-1386116225#6262, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4fb9ca81-b160-48a4-bfae-35ace98fb9e1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:29,965][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:107910163-1619696368#6263, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,029][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:536047511-1386116225#6264, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=50021b8c-47fe-4a02-acc4-2f02647a144b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,032][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1470595520-622549291#6265, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,099][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:292686434-1386116225#6266, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=145d6ac4-ebbb-467e-b354-00cef5bbb92c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,103][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:360267788-2117823202#6267, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,168][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:26650127-1386116225#6268, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d705452e-4f1e-47a8-ad2c-f348da70f790, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,172][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:11963717-1594934399#6269, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,237][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2052708613-1386116225#6270, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=96c384d6-197e-4f72-b546-280fd997d9bc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,246][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1321971359-2049171110#6271, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,323][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:600432289-1386116225#6272, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c3b98491-4164-47aa-befe-e8ffbaad5ec2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,328][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:401386028-71319832#6273, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,396][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1626503640-1386116225#6274, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5e7ff842-02e1-4ff1-81b6-c137dc7830cd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,399][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:220438449-2146236915#6275, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,446][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1853083431-198602720#6276, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:30,481][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2040672151-1386116225#6281, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3b992308-4a7e-4caa-b8b6-e2b2c6786940, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,485][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:174962114-455245097#6284, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,488][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1127258161-1072078844#6285, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:30,535][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1532099603-833697188#6300, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:30,591][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:60370143-1386116225#6302, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5f358d14-2dc9-4042-8aed-8dbd33931a8d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,598][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1806656940-202055358#6303, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,632][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:71889187-1316870817#6304, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:30,664][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1584350407--52387744#6309, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:59:30,680][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:172318554-1386116225#6310, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a2f072fb-4632-4638-9653-8ba9a4859ed7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,684][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1237804760-1766786451#6311, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,719][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1294085377-1832715376#6312, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:30,750][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:524181161-1386116225#6317, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ee8794db-2970-4cb0-9445-f5f7b208a08f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,753][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:248296256-1381686717#6318, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1472290050-1386116225#6319, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=531b758d-cc40-4d95-a0c4-284d7697c847, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,820][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:979864133-1364879610#6320, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,885][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1441390681-1386116225#6321, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=48603da9-cb81-48cb-a744-347dbcfb7746, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,890][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:144543403-246290527#6322, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,973][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:204586184-1386116225#6323, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fc0111ff-ab27-4e5f-955c-dbbbad453b23, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:30,976][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:381709887-1925989018#6324, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:30,993][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:215924860-218688211#6325, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,037][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:405589211-1386116225#6327, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2db8e94e-44c0-4e2e-b819-afd693ece750, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,041][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:149198294-1925413270#6328, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,118][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:953637743-1386116225#6329, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=62df01b5-9a37-4bc3-ad60-4ea5ae83850e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,122][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1180893882-1787131269#6330, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,201][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:65257098-1386116225#6331, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=23ed805f-c5c8-4de5-b475-d5541e77a585, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,205][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:23957946-1606755839#6332, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,291][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:514677471-1386116225#6333, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f8977924-b44a-4796-a95c-d60909036393, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,294][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:10788974-1839792513#6334, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,372][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:456469270-1386116225#6335, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=32b355ce-10f5-4a7f-8812-365c0c38597c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,375][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1866129677-1253608276#6336, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,533][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1874345611-1386116225#6337, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=819f9281-6e32-4695-8566-ba47db02328e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,536][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1575470577-1710061001#6338, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,602][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1795272715-1386116225#6339, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9d1155ba-7492-4975-a45d-bb1ed1b5c58f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,605][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1172543366-642255494#6340, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,659][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:671441083-1386116225#6341, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ac6924ae-e8a9-4232-a97e-1a83ad6bfec2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1323441240-392494501#6342, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,722][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1906235893-1386116225#6343, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c68539cd-2c2d-439b-bf61-afbb1f87f2ca, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,726][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1914535877-751021314#6344, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,812][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:477816042-1386116225#6345, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=206851a3-d791-4436-9914-1875b18a6b15, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,816][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:455923681-39219222#6346, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,886][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:860645091-1386116225#6347, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6a6cb742-f699-4784-9c36-e1da2969a93d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,889][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2019203540-87345889#6348, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:31,949][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:877911185-1386116225#6349, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6c3c8818-3891-42f2-a8b6-aa7b0d7632bc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:31,952][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1694027654-1212182260#6350, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,012][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1803601631-1386116225#6351, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0e367d12-dde6-4c06-845e-ed8d5be0092e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,016][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1092434026-1664834352#6352, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,085][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:675786349-1386116225#6353, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=72c5d696-f235-46c5-9d30-70c68a29cfa0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,089][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1159472004-1844088101#6354, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,166][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1706318587-1386116225#6355, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a0b042ed-89df-42d2-a6ce-b9cf7736eb09, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,169][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1552838861-95264798#6356, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,244][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1182047172-1386116225#6357, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f1077364-2f42-485a-b65c-f302473eb167, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,249][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:30433907-779580060#6358, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,341][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1186109980-1386116225#6359, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8e38ef36-896f-46fc-8e6d-6420aafe9481, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,345][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:612012981-641449651#6360, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,422][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:869124986-1386116225#6361, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6f2b5c70-3d71-481b-b74b-5b91b0cfa9f9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,426][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1644025189-292160980#6362, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,506][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1784672108-1386116225#6363, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5bc77668-c472-45dd-97ce-2184ba3aca8d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,510][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:932478790-944620076#6364, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,588][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2034771028-1386116225#6365, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a7125a83-ad0e-4cdc-a959-514026d506bd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,591][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1819902110-2013506584#6366, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,653][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:772365718-1386116225#6367, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5df71855-573b-4890-a9a6-b4f4b67aa000, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,656][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:375109255-914799010#6368, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,728][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1400938502-1386116225#6371, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=420c969e-5744-4dd3-9cb3-2ac1df837842, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,732][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:922857997-2082850276#6372, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,804][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2146248811-1386116225#6373, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=39cdb704-88ad-47ef-8a1c-ac4bf856282f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,808][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:700131072-328231392#6374, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,872][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1103664275-1386116225#6375, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e6dbacd3-8a69-4080-9df0-507dcaec70f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,875][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1475367601-662961256#6376, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:32,952][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:927751697-1386116225#6377, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=be719943-1132-443e-809c-0cfbb89e5bb7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:32,956][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:849684583-1729466712#6378, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,015][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1607291246-1386116225#6379, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3fc983fd-569f-4f35-af44-33fc42e1f0cf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,018][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:178532432-291100531#6380, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,086][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1519192913-1386116225#6381, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3560ce29-0943-4f9f-82c7-6e83b30c0047, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,089][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1878947663-1148451920#6382, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,172][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:131198674-1386116225#6383, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fce0fa1a-4e47-4f0e-b3c7-067dcd8dbbd4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,175][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1996058919-1503964532#6384, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,239][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2061732149-1386116225#6385, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=84c7cfd6-3994-48db-845a-6f404f8d82f2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,242][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1925996485-1333885170#6386, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,304][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:867345275-1386116225#6387, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ab586b33-e748-409e-bf54-37733519ed4a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,307][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1434332697-1172070660#6388, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,385][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:22992805-1386116225#6389, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7ad5fd16-b2f2-4984-88b3-5e61c2af8339, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:659621262-66845083#6390, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,447][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:518155949-2045436331#6391, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:33,455][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:621374625-1386116225#6396, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5c564ccb-627d-4bfb-8c2d-0471e1c7c83e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,458][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:917548100-1873242720#6397, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:33,460][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1377662042-2102355682#6400, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,491][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:564424689-1336304384#6403, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,521][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1981837578-1386116225#6405, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9a13e0f6-a00d-4d43-90c9-8e6c009e502f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,524][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1893626202-1913082711#6406, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,588][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:247828596-1386116225#6407, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4090edb0-c1be-4071-930c-45110daacf93, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,591][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2065172615-2018501151#6408, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,658][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:697926917-1386116225#6409, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e1d3c42d-b2c1-4b8f-a163-593db24f8cdd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,663][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:776066355-1256344714#6410, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,726][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:799467432-1386116225#6411, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5b6cf950-ed78-4a0f-90e1-8b4492142bc4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,731][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1249046260-1790595780#6412, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:853857541-1386116225#6413, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=07d7c7e1-db04-4474-b3eb-11bbd47d77ad, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,812][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:719843158-2009051568#6414, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,865][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1336668657-1386116225#6415, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7033d168-5c4b-472d-bc0c-8ec582eee0ba, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,868][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1542674940-1325105291#6416, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:33,930][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1153665749-1386116225#6417, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d2832e69-1908-40dc-b7c3-dc96a2ca2882, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:33,933][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:124220924-1605026535#6418, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,005][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:894023456-1386116225#6419, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1179bb70-be83-475e-8f2a-cc57325d7315, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,009][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1921289143-1316014222#6420, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,076][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1204065885-1386116225#6421, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b2c31e1b-2110-488b-a4a2-9d07b7d9427f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,080][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1061996850-1766011999#6422, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,151][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:557823297-1386116225#6423, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f982aac2-9baa-43b6-b823-5914cf7ad3cd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,154][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1118484805-460782971#6424, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,215][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1810355078-1386116225#6425, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e4375b6e-b1e2-4335-aac3-3e5b6eb8b185, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,218][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:934213126-542708007#6426, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,288][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1684002345-1141185754#6427, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:34,292][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:208186738-1386116225#6428, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d2fe5ebb-b27e-4fca-bffd-5b5900a94e9c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,295][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1497769114-429451122#6429, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,357][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1906318671-1386116225#6430, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=255e6ef9-94a2-4400-973a-90bf64f049c8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,360][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:946486580-1356901463#6431, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,436][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:245195342-1386116225#6432, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c3aff76c-4fbb-484a-9790-a050c563d669, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,439][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2133216439-382488058#6433, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,515][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1134283104-1386116225#6434, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9268b21a-d6f6-4d68-ab97-df92e5b2450a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,518][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:653352015-1803550674#6435, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,584][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:522767578-1386116225#6436, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=91ae336c-f8f2-4677-9bc7-1646ae6f4133, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,588][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:40224406-777712049#6437, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:978262727-1386116225#6438, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bc8792c0-6016-4c9f-b8e6-0d3d037239b2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,666][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1675124552-1336243411#6439, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:34,671][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:915133423-1959821019#6440, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,738][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1431522582-1386116225#6441, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e6da1469-5d84-4d44-ab0b-98c171ef7c9b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,741][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:825538691-1506284001#6442, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,815][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:773429925-1386116225#6443, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3407ae4f-4c22-4071-8fa3-651a46bd1a52, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,819][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1634552205-1971914115#6444, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,875][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1826047434-1386116225#6445, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6f386608-e821-47b8-a83d-6c6f9f9881e2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,878][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:242820679-97728292#6446, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:34,950][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:952864512-1386116225#6447, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=697612d7-026c-4e36-9892-d241179ee5eb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:34,954][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1852077254-694697043#6448, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,027][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:899568717-1386116225#6449, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=12244111-6496-480a-a8af-7e71436e935b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,030][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1372155505-482800330#6450, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,091][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1956962213-1386116225#6451, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=20677967-ad31-4ded-90de-2038bb72f874, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,095][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:861913408-696228796#6452, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,162][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:33848571-1386116225#6453, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a1c4c946-1068-4332-9c19-33ce46d2b481, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,165][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1351598825-488070265#6454, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,228][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1222678044-1386116225#6455, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=48071dbf-0a21-49fb-8e3f-b83fb78ba32f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,232][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1772275807-1192548104#6456, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,338][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1623703303-1386116225#6457, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8b47a1c5-cf29-4ec8-930e-7d79dba88b6b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,343][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:744199541-1405374609#6458, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,426][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:847868278-1386116225#6459, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=740be7f8-0e69-4989-8f17-360cc7d15511, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,429][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1877725095-527109906#6460, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,494][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1859818678-1386116225#6461, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dc684db5-62e1-4508-bb76-bbaf94bac062, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,499][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:396446426-637942142#6462, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,581][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1632805171-1386116225#6463, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1b05a553-1123-4bc9-9723-50baef8736d3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,585][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1528293003-1182634153#6464, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,677][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1361550545-1386116225#6465, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6404eb77-f20d-48dd-b0a2-319033cc630c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,681][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:621339903-1095724395#6466, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,756][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1797084467-1386116225#6467, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=032378a0-2ece-48b6-844d-6c05ed3f2c8b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,759][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:103910805-1694281392#6468, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,818][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1583526769-1386116225#6469, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a29eadb0-2e47-4b70-83ac-541b360073d3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,822][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1599590723-1426104857#6470, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,898][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1409814311-1386116225#6471, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6c1ef6e-0f33-4b4f-b453-5c161a7badf1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,901][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:523950060-2114371713#6472, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,979][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:776381746-1386116225#6473, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bb38178d-a058-4210-ae57-8c0229e1990c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:35,982][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:983824106-1945093093#6474, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:35,997][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:992286673-550587058#6475, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,041][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:98626788-1386116225#6477, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b504ca18-7aeb-4072-899d-8d7a444efedd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,046][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:144566102-454418955#6478, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,111][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:834387713-1386116225#6479, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2fa83c1f-60c7-4fef-9fa0-d92a78556084, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,114][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:868151838-1425937512#6480, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,180][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1615831366-1386116225#6481, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aac20a72-a744-41a8-8d7a-584814d2142f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,184][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:216025593-1217029241#6482, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1819501652-1386116225#6483, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b83a4463-8925-46ec-9da6-96f509ef6556, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,255][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1907076365-2131397952#6484, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,326][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1689814900-1386116225#6485, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1be88e7a-4d44-4848-8d1a-ce6474e7d342, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,329][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:329129587-1064377032#6486, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,398][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:339407083-1386116225#6487, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b7aed331-9cf7-4cbd-9ae9-9fdefa425116, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,402][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1619483689-603542906#6488, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,449][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:627139394-321761638#6489, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:36,467][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1797443336-1391691904#6496, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:36,473][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1563383700-1386116225#6502, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2250617d-8171-42a2-ad43-d11860d98a02, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,477][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:923300507-1840518727#6505, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,511][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1753822528-833697188#6513, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:36,553][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:68144142-1386116225#6515, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d8984c36-32c9-4e0a-95fa-580dba00f8e6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,557][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:599505132-1473485482#6516, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,598][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:437827641-1619884232#6517, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:36,628][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:512741613--53075430#6522, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1430396764--52387744#6524, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:59:36,651][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:180661437-1386116225#6525, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=be453ff2-9ada-439a-8969-9a9fcf0e5693, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,655][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:25480725-1642884720#6526, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,694][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:613496302-195024005#6527, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:36,749][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:751589253-1386116225#6532, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0e8c2e6f-28b8-4c2c-9959-0db04a3c102a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,752][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:785458050-54676979#6533, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,832][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1980533474-1386116225#6534, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=67740e46-6129-49fc-9b37-b7a8d432fbe6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,836][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:942836697-534278766#6535, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,912][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:249858483-1386116225#6536, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e2f42526-20d1-495b-aa6d-10a55553685f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,915][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:481118487-812475672#6537, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:36,985][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1828338297-1386116225#6538, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9f28d2d8-8a6c-4f9b-8c99-b07e036ff7d0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:36,991][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1182371652-820679533#6539, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,064][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1802794445-1386116225#6540, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=81ac2e14-cc4c-410f-b9c7-67102fa0e816, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1457566504-1550390559#6541, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,151][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:947684356-1386116225#6542, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a81bcd2f-c0d4-4b8e-a9de-1892239f8925, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,155][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1894667483-600096797#6543, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,213][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:932313239-1386116225#6544, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9c6eef91-71a8-459f-91a4-955859cdccf5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,217][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1804666565-1767624672#6545, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,302][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1813659390-1386116225#6546, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8e88936e-47d9-4633-9a8e-b83a5f6e2aaf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,306][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1425483434-934524383#6547, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,394][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:10508294-1386116225#6548, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=16482494-47bc-4c47-828a-37d310017a3e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,397][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1039170338-1348458560#6549, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,470][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2062062297-1386116225#6550, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f65b2345-e96b-4669-b2b5-187c0a3c882c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,474][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2022348266-1184749746#6551, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,545][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1747883513-1386116225#6552, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=48b8a78d-1dd3-44d7-a043-9f96774e9395, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,548][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1450097791-2053592733#6553, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,604][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1385646379-1386116225#6554, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0a473a2a-c6a8-4103-8a7e-928ba1063764, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,607][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1309315037-1839488807#6555, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,672][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:758591408-1386116225#6556, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4591eaea-94db-4441-9714-d907ea87e4a1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,675][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1166144812-1601175078#6557, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,738][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:285069195-1386116225#6560, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9110d855-94a9-44f7-bfe4-e533b3041ce2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,741][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:77805707-1312920998#6561, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,801][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1862257798-1386116225#6562, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=677ff972-9beb-4132-a204-49c7d9e9df6b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,804][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:268490565-234541742#6563, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,868][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1330940434-1386116225#6564, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=faf42f6c-425c-421c-b731-ac0aa48d0487, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,876][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1600124034-1240709843#6565, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:37,944][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:315064033-1386116225#6566, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4fbab89e-621e-47e5-8494-839d9df684da, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:37,947][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2041078449-1509126882#6567, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,022][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:218263085-1386116225#6568, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bc52b185-7ed1-4e9a-9351-cc5ac4765d14, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,025][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:605759770-513571522#6569, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,086][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1555726225-1386116225#6570, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=53c0c6c3-14f0-40ff-adc7-7fa0a616e411, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,089][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1121386797-1064936340#6571, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,149][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1120834771-1386116225#6572, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6b727e46-bb94-4289-8153-a8bf5c0d5b7a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,152][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1292316140-925074184#6573, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,219][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1161094011-1386116225#6574, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3b120408-23f9-4e40-91e5-80e8dc9b711c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,223][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1936363266-133604558#6575, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,278][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:753290491-1386116225#6576, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d7a6f69a-aaf7-4034-83d4-5259e28d901f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,281][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1311460647-1763625343#6577, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,349][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1543290950-1386116225#6578, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=51d47670-1e9a-4a03-a827-ee3214396d55, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,351][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1172561494-1370878392#6579, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,411][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1316982720-1386116225#6580, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aac43df5-7819-45e3-8a3b-d8c24584d382, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,414][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1933347001-687270374#6581, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,496][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1454433649-1386116225#6582, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=22cf2720-b600-463f-9f18-c07930176133, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,498][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1677943272-1936540817#6583, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,499][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1816869571-1023525206#6585, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,563][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1123220287-1386116225#6586, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=57fb784d-19d8-40a5-965d-f793d03a390c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,566][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1528985148-1854591673#6587, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,633][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1563604303-1386116225#6588, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=50f029f0-5eb2-4626-85bb-884492bb7429, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,635][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:147625685-1083671142#6589, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,642][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2016448471-811648339#6591, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2190.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2190, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,644][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1559660468-546220798#6592, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,721][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1555879695-1386116225#6593, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c7cbc8cf-5fbb-413a-a6ac-00c43826880c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,725][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1791019926-40053341#6594, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,783][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1475324341-1386116225#6595, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d36c75d3-43a7-4f34-9ff4-05888782867e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,786][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:445321476-805544417#6596, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,845][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1433463105-1386116225#6597, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=01c4379d-3bec-44a0-98b1-6f38d5a86589, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,849][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1539984842-420181126#6598, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,920][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:883606255-1386116225#6599, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a177d1b4-0cfd-4be0-84c9-72170759e8f5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:38,923][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1723998170-1869589205#6600, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:38,997][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:755125498-1386116225#6601, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dd9406dd-59a7-4cc9-a0a7-21f02576f28f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,000][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1339907599-966243553#6602, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:733779972-1386116225#6603, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a20deec9-f0bf-4cb8-8c2e-3fcaa191f074, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,074][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:342258709-829324720#6604, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,143][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:895154112-1386116225#6605, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=50789edf-40a9-44b8-a9e2-c012f4f70b6c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,147][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2053715415-1569202259#6606, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,217][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:524899759-1386116225#6607, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5bdfbcd0-dcd4-4b6e-85e1-a938943bc552, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,220][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2102347121-1320882306#6608, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,284][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1378696126-1386116225#6609, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7ff0d097-147e-4568-9de7-38d35c2af299, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,289][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:127723641-8343862#6610, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,303][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1271072992-912573471#6611, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:39,363][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:374763195-1386116225#6612, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=43003ccb-80ec-4392-b63b-cf92449e3be4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,367][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:756897540-1302511102#6613, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,438][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:934196125-1386116225#6614, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2fc97098-05fe-41cc-a41c-34f49dff212c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,440][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:304619621-1439359059#6615, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,453][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:991569255-589967369#6616, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:39,462][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:510390629-378071760#6621, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:39,523][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:224393817-1328517684#6626, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,540][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:483899580-1386116225#6627, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=81bb6f3f-7fc6-453e-b987-662bc8d227a4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,543][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1601123887-2119984934#6628, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,608][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:149900947-1386116225#6629, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=86213575-da6d-4b1e-b0f6-49705b28e200, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,612][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1909038900-1471222124#6630, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,684][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1254697451-1386116225#6631, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4361f030-a8e0-426d-8328-7b52d7a6dd50, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,690][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:941649399-95249912#6632, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:39,699][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1514683984-1506656899#6633, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,759][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1656312728-1386116225#6634, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=db043552-e82e-4f4a-a1ea-f7648c180065, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,763][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:215316626-393506278#6635, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,837][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:546995281-1386116225#6636, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=28df6f45-2bb3-4460-9b4a-949492d028b2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,839][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:135781961-790701617#6637, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,900][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:453928302-1386116225#6638, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b0948dce-8f1c-4dcc-bfe2-bb34697eb367, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,904][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1745218218-1582732405#6639, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:39,971][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2019569952-1386116225#6640, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=871c957e-b1b7-4d4d-96aa-b2b2a8cdd651, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:39,975][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:271392343-1463477826#6641, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,035][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1034237420-1386116225#6642, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4dcba93c-c82a-4ea4-bb08-f9dd1ae2964a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,038][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1152776777-1016236846#6643, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,107][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1016750600-1386116225#6644, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5e40983d-cee3-41ac-8eed-44996f11368d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,112][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:671361570-1133050585#6645, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,186][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1802228349-1386116225#6646, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=31a7246f-e674-4135-81f0-17f1a1e2d12b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,189][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:76441402-231872691#6647, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,255][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:151545314-1386116225#6648, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=46a9171d-80cb-4f06-9dab-cd7af2194417, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,259][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1011197572-1258664321#6649, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,330][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1443835858-1386116225#6650, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=90526a3d-4b93-4bb6-97f0-7b82883168e7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,336][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:476215172-226657034#6651, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,409][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1802347138-1386116225#6652, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=41fc664b-4bc2-4955-8c24-fe07ffa472f5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,413][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1144222082-1273159895#6653, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,466][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1390522482-1386116225#6654, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e4e25a58-2f05-48f3-baaf-afa62f88088d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,471][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1411281182-201241982#6655, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,538][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1472600206-1386116225#6656, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d88f78ba-951a-490f-ace6-b61692533afb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,542][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:150687780-793396900#6657, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,600][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1365332854-1386116225#6658, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=216ee04d-790c-48db-a672-a9d16a318e20, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,604][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:906245052-1689009960#6659, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,681][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:430848639-1386116225#6664, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9c2acb5a-e900-4919-bb37-87e5241d64db, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,691][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1108291807-1434542833#6665, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,777][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1347506710-1386116225#6666, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5b8729a8-bb34-4201-9268-c0a6d5fe15f9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,781][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:952428449-66498990#6667, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,846][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1572785611-1386116225#6668, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7e488616-6a56-40ec-9a33-5fba091eabe6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,849][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:128316808-415490866#6669, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,927][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:772688453-1386116225#6670, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd1e69b2-f5c0-4709-af88-121fd3e1af8b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:40,931][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:99945178-768915033#6671, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:40,999][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:713628322-1988702676#6672, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,015][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1535596037-1386116225#6674, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d2c0aa94-c02a-4b20-9c43-99905a9c8ea6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,018][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1399407954-836176279#6675, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,100][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:242194920-1386116225#6676, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4c1814de-6a00-4279-a6d4-72fbe2febd67, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,104][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1866056030-1994607166#6677, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,171][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2146528964-1386116225#6678, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a9dcede2-e800-4c2d-b038-bfaae3e81a7c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,174][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:228788235-749800400#6679, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,243][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1081018050-1386116225#6680, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eb36daf5-fd4b-43f4-bd1b-bf8b0344106e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,249][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:882689861-560624269#6681, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,322][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:86053627-1386116225#6682, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c445aa91-6bdf-4303-9ba7-581b0e6b9960, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,327][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1027624331-1865683849#6683, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,428][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:498662136-1386116225#6684, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=20cc6ddb-8931-442f-b807-dbf70380107a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,433][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:277054846-789622512#6685, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,514][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1618434240-1386116225#6686, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4c61d94d-c2cc-4764-8548-0632a772f9bc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,517][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:985796876-921095007#6687, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,640][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:472618077-1386116225#6688, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eb7e3ea6-63c3-406f-86f7-300354ca2a28, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,645][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1187020352-1822445029#6689, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,731][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1822215965-1386116225#6690, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f4e3c4fd-8eb4-437c-8a63-25897a3f665e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,735][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:743778223-1763868187#6691, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,842][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:126077375-1386116225#6692, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b866c394-1c55-4c7a-b283-af2f859a9e0b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,847][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:225254005-134233128#6693, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,914][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1915246997-1386116225#6694, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ebc505bc-a4cc-4d05-a122-144e3530b9ca, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,918][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1803528286-237287926#6695, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:41,995][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:122430822-1386116225#6696, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d999cbd6-b81c-4bd0-9030-cf08793c336f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:41,999][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:932716779-565400350#6697, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,083][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:175351255-1386116225#6698, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1bef322b-8f24-4a62-aa4c-b66728acd79e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,087][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1827849962-437988583#6699, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,164][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:554411801-1386116225#6700, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=da90b75b-2d9a-40e2-a082-346569056c93, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,167][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:910287858-1283372614#6701, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,231][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:264357690-1386116225#6702, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b52d2038-7bb4-4ca0-8181-7f6c495010f4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,235][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1938725556-1256831300#6703, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,304][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1931279065-1386116225#6704, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3e6b65d3-760a-4c65-9f79-fcdbb646e53e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,307][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1927617431-1975088197#6705, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,363][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1922940975-1386116225#6706, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d0c5a389-1d9c-467d-b79a-f2f68ee95a81, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,368][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1724069527-1017163899#6707, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,441][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:33939702-1386116225#6708, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=009960ee-4131-419c-87bc-a00a6fabe45c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,445][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:503694369-1636642552#6709, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,463][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2135526557-1917370625#6710, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:42,478][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:106407464-792236943#6717, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:42,524][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1619913812-833697188#6732, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:42,553][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1477929434-1386116225#6734, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3f89d0a0-80fb-46f4-9cc1-e815607dbfdf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,556][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1966612606-1168954932#6735, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,596][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1298057879-778314591#6736, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:42,615][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:443272509--52387744#6741, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:59:42,628][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:961914162-1386116225#6742, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ae0abb3b-8f66-4d66-a327-f66c67e53b97, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,632][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:48552701-227897125#6743, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,676][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1238587791-1564150194#6744, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:42,703][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2041316314-1386116225#6751, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4f315510-0e69-4c5c-980c-7077a0cec961, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,707][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1600567181-204116687#6752, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,777][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:165244001-1386116225#6753, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d516749c-3a8c-4297-a400-3d102de2af1e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,780][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:284298323-2059541279#6754, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,845][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:581321314-1386116225#6755, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dd9034fd-2a91-4c75-a514-30ef5c391273, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,848][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1625196595-1615757551#6756, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,908][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:171865370-1386116225#6757, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=85835f4f-b540-4e27-947c-1a6d71f30c91, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,911][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:438014829-235933453#6758, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:42,978][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:441303000-1386116225#6759, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2000ad0a-24ad-45dc-8d9d-e2ac65528495, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:42,981][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1663209262-635758812#6760, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,040][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:721613578-1386116225#6761, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8e8f308f-a4ea-4345-9085-911ca15b2ccc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,045][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1556495053-728405380#6762, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,136][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:692726333-1386116225#6763, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=382efec6-fc3e-4ce6-9a51-55d39f4ad01c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,140][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:367793853-2022790815#6764, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,218][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:128461500-1386116225#6765, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=db7b5922-ece9-4b90-9b2e-2713db5cc17a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,221][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2144068534-182934284#6766, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,295][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2016461153-1386116225#6767, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ad3628fa-5374-4e5f-8b9b-c72a89b68ef6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,299][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1040972049-511535925#6768, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,377][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:787639501-1386116225#6769, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=db228d93-d64a-48b9-bcbf-e4a20538da4c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,380][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1345817531-823473117#6770, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,440][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1153745417-1386116225#6771, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6b57c9b5-a24d-423e-b1a1-d26447f5b810, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,443][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2037209688-367750301#6772, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,501][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:225979942-1875796234#6773, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,508][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2086820145-1386116225#6775, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=12adc6c6-7ea7-407a-8f05-57517a8fb405, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,511][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:841174436-2120637656#6776, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,583][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1648141359-1386116225#6777, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e2258ff5-e93d-4347-8f96-54c648a886d0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,587][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:209306248-606068942#6778, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,661][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1758722057-1386116225#6779, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=04d49bcf-08c8-4dc4-88ec-96bece253877, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,666][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1875457248-761714195#6780, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,748][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1990478561-1386116225#6781, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5c8cc576-2164-4485-8b00-4b315ecb59d4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,752][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:21030796-654880112#6782, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,852][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1011163596-1386116225#6790, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7c8d1d27-ebc1-48dc-b033-08d015a43da0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,857][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1759680487-1847091696#6792, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:43,943][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:211366510-1386116225#6793, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f241e180-dbc2-4758-8de8-de77b0b62e8f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:43,949][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1222390445-219378586#6794, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,038][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:759158769-1386116225#6795, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4a30332f-389c-45e6-95ca-823d85abb1b3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,042][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2127211678-1462411440#6796, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,112][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1102284396-1386116225#6797, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f831f0d3-5d47-4817-871f-9f2edea3d30f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,116][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:308302324-962961786#6798, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,179][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:994621894-1386116225#6799, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b7dfccd6-be99-4bdb-a1af-545cf34dedf1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,183][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1712703525-1995102946#6800, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,250][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1645267764-1386116225#6801, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cb138333-8b1b-4217-85e8-7921eb6256d8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,253][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:476633145-1425305457#6802, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,316][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1961460423-1386116225#6803, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=098f004d-e98f-4370-9606-74ce9cb42e8b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,324][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:281329157-1245123892#6804, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,332][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:282551692-730523480#6805, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:44,395][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1037001956-1386116225#6806, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b690ddb0-2c67-4228-b264-52643314e22a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,400][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:92812832-805934082#6807, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,474][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1122347394-1386116225#6808, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d0f57115-be5c-40a0-ac4e-aa4de936fe07, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,477][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:80420222-1085674225#6809, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,539][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1021523809-1386116225#6810, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fa6137ba-7464-4f6b-871d-751f92670ccd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,542][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1403334854-265942817#6811, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,607][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2131250609-1386116225#6812, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5a771c98-f8e1-4465-9442-e46a788f1e33, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,611][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1526019342-548150678#6813, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,678][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1611433565-1386116225#6816, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=82cc34ce-9e25-4521-b7ef-96f2291c23db, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,681][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1574189608-779758041#6817, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,718][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1853542701-1791007953#6818, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:44,743][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:372895451-1386116225#6819, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b1cd60fe-cca3-4448-81c4-4fd882892b63, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,747][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1769089316-1371111070#6820, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1072780908-1386116225#6821, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d0e4d062-4a6b-4449-b3ca-40dc5be33594, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,813][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1726429311-514070158#6822, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,879][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:83084874-1386116225#6823, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9caffce9-6455-474a-a5e8-92749cad66b3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,883][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:830775950-1853837313#6824, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:44,942][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1355885350-1386116225#6825, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c3f1834e-9e69-440d-843f-209d4ce8ff35, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:44,945][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1242195680-1577991677#6826, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,009][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1248170341-1386116225#6827, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9821e304-2964-42df-8c54-0364d984e4af, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,014][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:330570516-168841956#6828, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,095][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:635332494-1386116225#6831, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aed6942f-0469-46bc-82b0-d7aec3348e53, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,099][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2022052027-783477298#6832, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,177][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1555165809-1386116225#6833, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b60fce38-7b50-4f2e-a2bf-057cee59f62d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,182][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1667146432-722822616#6834, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,243][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:315619826-1386116225#6835, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=719108db-eac7-4dfd-966f-cf47cfab6da1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,246][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1103012768-1465926133#6836, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,308][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1474020708-1386116225#6837, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f457d900-543f-45f3-b39b-bcc4c48d99d0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,311][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:985048580-245473617#6838, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,380][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1528510105-1386116225#6841, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ed8f6c86-58e0-449a-a0d4-105ff8501bb0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,384][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1382164603-1567306421#6842, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,453][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1581497184-1386116225#6843, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=516dde0a-ac55-4955-b047-e7c8a5cce5b4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,456][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1550774735-529279945#6844, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,463][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1151706708-1358252914#6845, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:45,478][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1870845590-1217959506#6850, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:45,534][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:460741655-1386116225#6855, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=429cb31d-716e-45c2-8516-fd8f77ab0693, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,537][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1479371938-1944456929#6856, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,611][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:231387447-1386116225#6857, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e17104e7-c5dc-408d-a2c9-18184b8958b1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,614][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:611701373-386855469#6858, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,680][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1423734571-1386116225#6859, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=735e14c1-4bb1-4bba-aabe-48f3b925f218, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,684][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:205989774-111934017#6860, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,760][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1725234979-1386116225#6861, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7e02adc8-820d-4f7d-8914-3166d20e27ed, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,764][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1367779837-1690869524#6862, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,860][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1038616638-1386116225#6863, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=72d368ee-b1cb-4c5b-bb0a-1fda0e5c06ca, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,864][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2089080135-413745771#6864, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:45,970][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:943279701-1386116225#6865, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=05a93d81-ed67-44bf-87ec-9941e7a1c9d7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:45,982][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1164773524-530170771#6866, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,012][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1299279889-1061733388#6867, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,107][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:306991833-1386116225#6871, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3650f6b9-b47f-4399-a19c-4a194b03a08a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,119][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1134075480-87003074#6872, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,178][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2092848079-1386116225#6873, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=95568b3b-8c87-4798-a73a-8a8158b2ca22, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,181][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:211033115-200882575#6874, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1917970093-1386116225#6875, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4dc4ee40-d714-42be-9fad-8488265fa6ba, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,254][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2097144579-1353141315#6876, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,317][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:315630233-1386116225#6877, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=61c07eea-e9d9-4312-9fcb-50516f22395b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,320][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1867111136-1823329265#6878, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,395][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:109205363-1386116225#6879, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a772b599-efa4-46e5-859d-6a798c8455bd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,399][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:357919184-887766848#6880, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,468][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:907712623-1386116225#6881, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d9596aee-5700-4a23-9d3c-b45edeb34cec, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,472][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:582449168-479366783#6882, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,543][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2036834962-1386116225#6883, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3287369b-ac08-4e7c-9712-fdadd2c2e23a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,549][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:467436593-36837538#6884, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,621][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:173772781-1386116225#6887, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d79f7a0d-d863-4900-b57e-8277e79eddec, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,625][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1324146438-829302758#6888, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,689][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:587980385-1386116225#6889, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d1702a8e-dbe6-4c77-9a3d-adf69cb9c95c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1970866442-1564863564#6890, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,750][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:492089621-1386116225#6891, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e759b5a5-77dd-4ec2-9af9-c0c344f59874, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,753][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1615957000-1566435409#6892, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:797460538-1386116225#6893, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b7873825-4007-4381-89a2-cf8018679c52, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,820][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:392992967-2075228142#6894, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,887][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1226573737-1386116225#6895, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=91cd20a2-2941-4758-abb6-d8dd4d3064e3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,891][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:607670056-1465991624#6896, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:46,964][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:664752845-1386116225#6897, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4fc8d35c-7871-4d96-a0ba-60eeda9f322b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:46,967][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:244791512-1748006701#6898, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,032][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:897713378-1386116225#6899, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8b571ce6-5b5a-42d4-8b94-f724a0b1c13e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,036][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1750479269-1605404047#6900, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,114][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:877795403-1386116225#6901, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=91eef547-0fc6-41bd-b585-7282b77efae8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,116][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:299020087-1213231025#6902, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,176][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:320276425-1386116225#6903, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a9bb55f9-8707-441d-ab5e-9dfcd3d6cf6b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,179][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:925091232-856457060#6904, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,240][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2028643155-1386116225#6905, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b6687182-a67b-4e0e-a1ae-258aaefe3516, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,243][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1407765192-2060389328#6906, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,303][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:719891634-1386116225#6907, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8dc00ad4-7c14-45f5-a405-54af15cd135d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,311][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:120943239-312366627#6908, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,370][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:269311531-1386116225#6909, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=52e45c27-335e-44fb-9095-ec235f3aa9b8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,375][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2138045860-1407326596#6910, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,440][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:867005077-1386116225#6911, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d96f724b-45a0-4fc0-9600-b4cdf1c64d7c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,444][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1235979981-1227475073#6912, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,507][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:172279321-1386116225#6913, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a1b7f835-e963-40c2-8424-2565745e972e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,510][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1378169886-1198331249#6914, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,584][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1082634461-1386116225#6915, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c56eab6f-ae78-4d46-b22a-214238c74163, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,588][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1818219226-388079243#6916, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,666][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:952686467-1386116225#6917, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=29da8580-8fb1-404f-a784-81b3d2dda807, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,671][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1277252545-850125065#6918, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,767][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1404463650-1386116225#6923, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7c10ddd1-2437-40de-80c6-39fbf951ab1b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,778][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2124910183-945714473#6924, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,868][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1427138690-1386116225#6925, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=20e5a7b0-17dc-4c58-befb-3a65aaaa1d7a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,873][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:890765176-1996589835#6926, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:47,965][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1019039743-1386116225#6927, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6199f07-3ffb-4bcb-8991-2bf325ef45c6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:47,970][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:469449809-1307531878#6928, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,039][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1558559933-1386116225#6929, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b54a2cfe-efed-4956-a251-de4b251acb2a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,042][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1900347529-857645892#6930, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,104][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:68547371-1386116225#6931, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3042a874-2709-4d3e-a38c-31eb0a8b3406, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,107][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1969530688-746364973#6932, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,167][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1790845541-1386116225#6933, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=66f767aa-1b47-4c7c-b654-9e798ebe1253, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,172][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1100552370-295168358#6934, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1478713009-1386116225#6939, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e4347c7b-e0e0-401f-bc8d-6a3fe0204e84, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,257][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1133896410-1245720210#6940, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,334][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1141363166--698386866#6941, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=855.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=855, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:48,341][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1681007205-1386116225#6943, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c6395e53-cbb6-4769-949f-66a3196264ed, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,345][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:28707037-1960977284#6944, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,367][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1663558018-1706406533#6945, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,410][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1425321486-1386116225#6946, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0f1b7227-3045-4a5d-abb0-55449a433df7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,413][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:829376791-1830323529#6947, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,465][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1136406581-742621090#6948, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:48,485][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:447656325-1151243832#6955, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:48,487][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:636560373-1386116225#6956, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=84362db9-d076-4af1-b299-406045f83897, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1409580443-535339517#6959, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,523][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:196653266-833697188#6972, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:48,540][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1831759948-924046173#6974, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,588][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:463484758-141785624#6976, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:48,598][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:381798218-1386116225#6979, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eb0465fc-6d53-44c9-8887-9fb3213b78e4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,602][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1063352308-635563465#6981, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,639][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:919724247--52387744#6983, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:59:48,640][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1616285450-261830684#6984, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,644][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:775064272--53075430#6986, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,654][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1057247361-1911835027#6988, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2204.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2204, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:450397749-1386116225#6989, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c6fbad33-1c0b-41fb-8dac-43c74af7ffda, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,698][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:821931778-160642706#6990, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:48,700][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:621717112-1929584925#6991, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,777][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:860707194-1386116225#6996, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=252e78c7-c4e8-4059-9f9c-5e927f0bd442, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,782][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1855911844-1031115573#6997, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,865][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1836746760-1386116225#6998, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ecbbd3cf-6394-49cd-a196-26f8f1e974fc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,870][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1830342533-125370610#6999, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:48,944][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:815972122-1386116225#7000, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f20c0dd9-d281-4c43-a6d9-b5fe0ebd2230, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:48,949][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:516158574-264122552#7001, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,027][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:538261562-1386116225#7002, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3e3507f5-b35d-434f-9f90-0f3a59d70239, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,030][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:611430957-1807763649#7003, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,088][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2034901963-1386116225#7004, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c988ce20-2322-485e-a338-906e8d5484c7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,099][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1780588883-350517087#7005, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,167][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1086971426-1386116225#7010, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=81419a1a-b858-44dd-a070-d69a3ef86bb2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,170][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1026379572-1422036496#7011, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,230][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1706488654-1386116225#7012, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b19b2a91-0de1-469d-937a-49d7bcd3dfff, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,233][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:856594146-73879891#7013, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,301][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1819005738-1386116225#7014, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=efae9aab-c3bf-49ab-a004-6edde12c45aa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,304][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1399126532-328621174#7015, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,350][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1424519520-1790664551#7016, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:49,372][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1142415639-1386116225#7017, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f460c29d-bc6c-4c48-ac56-82dfad2621c1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,375][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:519777518-1068480171#7018, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,439][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1252069241-1386116225#7019, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e62d5514-5c64-472a-9386-35ee9f6edab0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,442][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:685482831-413892948#7020, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,499][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:417311200-1386116225#7021, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=de9c923a-ffdf-47e0-991a-7d95bfd995ec, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,503][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1609581299-497593672#7022, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,580][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:715119442-1386116225#7023, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=baff8467-d1c1-49a7-87ef-5dbfe1aa2b86, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,582][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1755096169-746137871#7024, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,620][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1908609449--689251507#7025, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=407.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=407, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,664][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1375438927-1386116225#7027, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b524dc46-00c0-42af-bce8-591c2da52f49, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,667][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:702099508-619411082#7028, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,730][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:325291982-1386116225#7029, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1c6b4f56-63de-42f8-93ce-7494e6a9dd62, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,733][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1981195499-570926128#7030, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:49,735][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1094652489-672669086#7031, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,805][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:800319951-1386116225#7032, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cdbd7a4d-fc5f-43c7-a3cc-1b834d553afd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1210105913-922787985#7033, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,869][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:539037192-1386116225#7034, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=51fb63f7-0061-4676-8fb3-317be065ae27, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,873][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:244597090-1711819203#7035, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:49,943][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1674827547-1386116225#7036, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a21dfd20-1c4c-4db2-9999-f5b35d80c132, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:49,946][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:686259251-441537942#7037, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,005][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2095765877-1386116225#7038, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b3a9ca18-1fb3-4813-85c7-320fcdd643e1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,008][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:920815855-302025121#7039, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,064][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1286060726-1386116225#7040, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3f1e2762-8e78-489c-b42f-e4e2ddc39e7e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,068][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:18180406-301494631#7041, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,143][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1683930212-1386116225#7042, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e5231c6c-fcd6-42e7-9eff-52efd9443702, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,146][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:872359495-631569432#7043, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,212][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:432592123-1386116225#7044, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=29fc8682-a1a2-498a-87a5-2e09855fadf7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,216][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:257060163-1576228487#7045, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,282][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:868456390-1386116225#7046, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=62f0e381-8966-426e-9fc7-fc2c14351b8e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,285][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:393518688-364049578#7047, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,350][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1111554306-1386116225#7048, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1c1d8f5d-8f87-42cd-9dd5-4a401b0e218e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,354][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:152484650-1310098401#7049, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,420][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1399640242-1386116225#7050, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=029dec62-e709-4eff-b5e0-e9c1bb88071c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,423][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2107802589-2134323047#7051, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,497][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:215787816-1386116225#7052, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b41ad83b-3670-4719-87e7-a7fee42106b2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,501][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1136919616-968330834#7053, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,575][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:588149458-1386116225#7054, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=62808752-edad-4320-83e5-c03f03e993ac, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,577][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1357012690-375922622#7055, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,637][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1724057432-1386116225#7056, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0c8c7d6b-6d9a-4a33-8e7d-be0b80334d08, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,640][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1978531639-1890396870#7057, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,710][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1402974834-1386116225#7058, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7c636fd9-d3e5-4311-a60c-d299af698a5f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,714][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:846982863-1689817809#7059, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,789][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:988005568-1386116225#7060, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d1a2c45b-cbce-470b-bf91-c8ab8c2dc719, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,792][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2125909302-1741955900#7061, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,856][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1789634988-1386116225#7062, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ef4be9d5-c205-475b-b6ff-82cc85f27652, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,859][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1655514638-606479524#7063, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,915][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:346856038-1386116225#7064, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=86ea000e-91d9-45d3-9af0-3c8337326054, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,918][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:194604259-1976913539#7065, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:50,981][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:974038691-1386116225#7066, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd54e3d6-5273-41fc-ab0f-0d65cdd26b32, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:50,984][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2118359905-1800766217#7067, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,002][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:510632166-700357710#7068, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,053][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1496407221-1386116225#7070, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a022d189-88e5-4a01-a773-d36c6944a0b7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:51,058][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:373674638-1976444976#7071, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,122][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:684688939-1386116225#7072, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2797a2e1-4e47-4a76-84d3-1d191cd082d1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:51,126][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2076750707-1126289190#7073, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,206][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1193992410-1386116225#7074, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4379a087-5a27-4929-8248-68f6719e034e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:51,210][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:318822602-762159858#7075, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,311][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1618477190-1386116225#7076, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c700ab7d-cf42-4d25-bf76-d54d6af78062, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:51,316][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1891897443-1696022585#7077, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,418][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:623711323-1386116225#7078, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=64f7fa6d-b711-4db0-b769-dda604e393e3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:51,422][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:99699784-1432748957#7079, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,470][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1103454322-1225827402#7080, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:51,486][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:107147609-221609878#7085, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:51,522][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:170887040-1386116225#7090, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=96a31953-9a24-4507-80b8-5c90027a8e2a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:51,526][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1198380370-1215382267#7091, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,600][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:770624131-1386116225#7092, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd564d88-afe2-48ad-b1b0-cf8c5cdce519, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:51,604][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1527470905-1927660111#7093, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,683][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:817963122-1386116225#7094, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9dde76d4-3570-411e-ac3f-382bdc04f1e8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:51,685][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1797283387-1785922293#7095, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,747][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:911753806-1386116225#7096, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4dd46667-c73f-4e84-8599-88607a369288, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:51,751][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:253961799-1713074206#7097, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,836][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:344826498-1386116225#7098, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=664438e0-4c40-492a-8051-8cde02966748, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:51,841][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1622399087-1991564064#7099, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:51,930][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1259523688-1386116225#7100, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=15a9f01a-afc7-4d13-b267-bdf6c268e849, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:51,933][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:854780986-1283209899#7101, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,003][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:482448863-1386116225#7102, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=759a6d77-63af-4e93-bac1-88bc895b1c6b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,007][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1098742177-1682689672#7103, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,087][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1238305224-1386116225#7104, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7cba5955-2918-44c3-a3d9-f1a36c7557dc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,091][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1504707139-1932183717#7105, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,157][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1227847622-1386116225#7106, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=49456e75-2bd9-4412-9afc-eb166e50d8a5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,161][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2023732834-568590632#7107, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,233][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:78551633-1386116225#7108, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7beadcb1-0b26-4aba-9377-e49a714d5ff9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,237][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:906845253-866435136#7109, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,314][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:851995229-1386116225#7110, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3282ca28-ae90-4439-aaca-1e68bce711d0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,318][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1111757383-511148350#7111, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,372][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:197457008-1386116225#7112, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e7240b6d-16b2-41f1-bc9b-0607355a7c4d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,376][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2058354135-404426479#7113, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,442][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:977732259-1386116225#7114, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9ca42750-f75d-450c-82e5-554a13f423b8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,445][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:378279663-331874476#7115, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,506][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1399064652-1386116225#7116, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ebc81812-cb8c-482f-b282-9e9efe051e4d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,510][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1362381465-670635326#7117, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,585][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1961339917-1386116225#7118, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2a91a809-d15d-4bb0-9446-1bf9eb80e345, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,588][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:129166517-1948323416#7119, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,657][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:454993159-1386116225#7120, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cae552af-5296-417e-9f00-3018e7aeb0f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,660][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1389426093-1117223942#7121, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,726][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1043917250-1386116225#7124, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=36f2844b-45cc-4237-833c-f5378f4a692b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,730][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1348490655-88649635#7125, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,788][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2093384768-1386116225#7126, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=acbbead9-bc8e-4713-83c6-e22c70931e08, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,792][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:97060067-1473733992#7127, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,851][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:388169094-1386116225#7128, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=121694b2-1d94-4cac-ad34-fdf9e88c7d23, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,853][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1603182502-304965288#7129, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,913][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2126364064-1386116225#7130, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=78e05f08-1050-45f0-a2d9-a7479411cf78, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,917][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2121511228-1428906747#7131, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:52,989][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:743069392-1386116225#7132, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=17aadd65-3044-4d57-a37e-9a953e61cee4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:52,992][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1065991748-1552941784#7133, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,059][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1386385163-1386116225#7134, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d8053aa6-824a-48b0-953e-2abc312b49e6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,062][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:740339545-1588154119#7135, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,143][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:49483976-1386116225#7136, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6c95c8ae-4aa4-4451-b224-e162bf8897c5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,146][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1148132682-1830562041#7137, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,215][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1594850792-1386116225#7138, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=194a8d30-e3ae-424e-9da0-5ce83bb9f6c6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,218][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1406717200-1722631314#7139, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,274][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:805393327-1386116225#7140, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ff666073-33eb-4e90-bed0-7d6965e34082, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,277][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:348489850-23099327#7141, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,343][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:224733909-1386116225#7142, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3047f987-32d6-4c20-b201-e1674c5976a9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,346][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:935562493-259867687#7143, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,423][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:228722680-1386116225#7144, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7b653baf-b16e-4576-8c8a-bc8006f1aeb1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,425][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:691382043-37380772#7145, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,500][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1728271032-1386116225#7146, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9b78254d-d26c-4950-b8d6-7ecf7ce223c5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,505][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:889884220-1858515262#7148, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,508][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2047022183-2123000131#7147, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,576][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:804526964-1386116225#7150, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dedc2f25-9690-4ac2-95e4-45b52b81eb98, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,579][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1386154656-811437240#7151, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,634][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:489700225-1386116225#7152, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7db5359d-dbff-4012-8fd5-128d305cbfae, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,638][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:303086824-946892288#7153, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,706][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1687428602-1386116225#7154, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8577c31c-d12c-4552-8b72-09b806b44437, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,710][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2019876570-1870973634#7155, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,774][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1413462364-1386116225#7156, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f80d2b5a-848e-4236-9ece-f7f6d85a01fb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,778][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:268436972-1313643320#7157, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:123177705-1386116225#7158, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ab317086-c534-4098-a54e-3aa0d18ab0de, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,838][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:772482566-1043626318#7159, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,899][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:336306411-1386116225#7160, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ca924bdb-6479-4d4c-aaf6-c34f561d04f2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,902][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:800088129-1484544167#7161, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:53,973][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1168090351-1386116225#7162, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d4ea7dce-a6c8-4eb2-9751-1e024e473b60, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:53,976][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:215636047-541361149#7163, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,052][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:440884786-1386116225#7164, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aa323901-3511-414c-a1a7-f8d8f53a893f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,056][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:575088969-2088834414#7165, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,128][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2027829864-1386116225#7166, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0431c4ce-26d5-42f4-9015-1df90d66ed28, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,130][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1489526159-1138637502#7167, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,194][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:922779086-1386116225#7168, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=75fd5d7f-1162-4249-81a4-571cebed8d41, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,197][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1040456764-607783510#7169, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,262][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:377741221-1386116225#7170, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8d919568-9569-47ae-945e-cab81c26e9e2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,267][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:584662710-1017262893#7171, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,325][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1220470357-1386116225#7172, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b3290a92-92ed-43e6-bf8a-0a7d3a48a714, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,328][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1086875152-730844209#7173, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,373][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2134863238-1498440760#7174, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:54,403][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:110733622-1386116225#7175, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=27050813-80ba-4a94-9ebe-5e2891e66a88, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,407][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:967470078-978412093#7176, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,468][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:830553417-2005378772#7177, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:54,484][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1471171243-258506072#7184, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:54,486][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1877663490-1386116225#7187, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5795cd78-1a93-438c-8886-2d6670306cd7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,495][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:619776976-1324245291#7191, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,522][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1536347058-833697188#7201, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:54,585][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2141172289-1177841791#7203, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:54,604][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1782013154--52387744#7208, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T17:59:54,610][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1466802102-1386116225#7209, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e45bf5d5-2be9-4295-a8e6-49df0ed9f26e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,613][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1432494752-808458235#7210, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,665][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1622187347-1528512220#7211, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T17:59:54,712][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:522743869-1386116225#7216, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5b50ba0b-152b-481e-b811-97fb1ba123df, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,716][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:798434284-1269393736#7217, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,765][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1229341503-355691442#7218, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:54,811][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:61711035-1386116225#7219, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1ce8d322-f4a5-4906-a8c1-4c143d17f219, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,815][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:63858863-2020252754#7220, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,884][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1988757014-1386116225#7221, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e7729c6a-98c4-4472-a48c-0517b3142f72, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,888][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:408738310-1747407538#7222, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:54,961][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1149492200-1386116225#7223, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1dac3965-4f6b-4040-be36-c38e93f30ca4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:54,964][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1654644696-476947815#7224, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,031][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1317914266-1386116225#7225, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bea219b7-60fb-4653-9675-e5590592b797, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,034][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:344660024-150369390#7226, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,097][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2034351754-1386116225#7227, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fbadbb31-0a56-4673-8e4e-de54b55ed227, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,105][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1498947118-366909413#7228, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,171][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:783336500-1386116225#7229, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=292ed8b6-2a44-4d0d-86a8-29ef003ceebf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,174][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1517394566-1136744072#7230, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,231][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:574718122-1386116225#7231, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=178d4b4f-a200-4c41-b4d9-0f613f53fb61, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,234][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:175661490-1544253393#7232, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,290][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:355932110-1386116225#7233, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c43e0391-3b69-4a47-b139-56faf47b3879, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,294][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1004376338-1918964266#7234, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,359][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1972608592-1386116225#7235, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7931dc35-6fcc-4585-8210-bd5584a3b246, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,364][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1480031819-263528798#7236, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,442][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1975485120-1386116225#7237, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4bdd889e-995e-4024-90d9-6b15a0a2c30f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,446][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:473428793-2131821522#7238, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,503][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1502110399-1386116225#7239, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=32155578-e1f2-4739-a62c-82ef42a204e0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,506][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1353204428-1931857371#7240, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,567][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:81612798-1386116225#7241, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=744199aa-f89f-4c6a-b51f-526f989de793, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,576][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:509233216-209114981#7242, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,646][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1373673509-1386116225#7243, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b7345f3c-0b66-486e-9638-60fcd40ca966, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,650][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1068273496-1937295525#7244, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,711][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1234170960-1386116225#7245, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=67e82210-2813-4b4e-934b-63438e54d550, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,714][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:486239476-1207367292#7246, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,773][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1920873415-1386116225#7247, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f056363f-a878-4a75-8ae9-6bdae342c3ce, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,776][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1930133269-1885899448#7248, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,841][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:524795933-1386116225#7249, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7e9ad20d-4fd5-448e-b344-a144676ddd0d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,844][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1844175121-1169213550#7250, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,915][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1907992362-1386116225#7251, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cd621d04-c3f2-45c7-9b6b-edf9bdc3c040, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,918][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1356846632-1645102667#7252, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:55,989][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:566104540-1386116225#7253, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=81a8856e-e953-4640-aad3-b8a106099985, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:55,992][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:486699574-860002600#7254, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,006][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1154978037-291995606#7255, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,050][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:602844437-1386116225#7257, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=08b45127-91b2-4e97-b2ef-4c11e7114907, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,053][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1562989087-279694675#7258, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,118][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1922000965-1386116225#7259, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c941935d-5a3d-472a-8d00-a8885b860be6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,121][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1753458571-1118895234#7260, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,180][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2089957344-1386116225#7261, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b43d4dff-ad10-420c-9457-6913eb8d50ed, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,183][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1428092769-462518724#7262, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,239][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1539209859-1386116225#7263, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fbc02f2e-4ad9-4a7c-845d-bdac501111ef, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,242][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1851468482-726306663#7264, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,300][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:225374948-1386116225#7265, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cffb5f98-3acb-43c0-88f0-98eaf6676e47, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,303][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:164479120-428005172#7266, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,371][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:78282316-1386116225#7267, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d2599148-00cb-481c-82ca-590bed7d9538, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,374][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:783873020-1366712571#7268, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,437][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1776968718-1386116225#7269, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f0e7f05a-23d2-4603-a335-f28b41c81a6f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,439][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:911794949-971815309#7270, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,505][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1093165522-1386116225#7271, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=40d109e8-ff35-4ffa-a857-09d3fe6a5fac, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,510][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1352829535-842090760#7272, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,563][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1001083585-1386116225#7273, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=87976b42-9902-478f-8831-c5be7041d7f9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,566][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1124127872-528235964#7274, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,627][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1822688230-1386116225#7275, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e12df115-9bcb-4f46-8607-4c4d7617525b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1539878014-1669973766#7276, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,708][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1448394856-1386116225#7277, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bde0d91e-03f9-482f-8e21-d84f815e5d9a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,711][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:652782371-1476912031#7278, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,780][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1425018241-1386116225#7279, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c7d3d074-e575-4c27-88bd-89fbe5523cf9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,784][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1177690045-1798193546#7280, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,852][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:892100740-1386116225#7281, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5e721fbe-4001-42f6-8300-f5d311b12bf0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,855][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:150752895-1870680036#7282, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,921][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1563737756-1386116225#7283, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=557ef74b-51de-46a6-9a0c-585e9d5c9b98, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,924][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:957971038-539119334#7284, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:56,986][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:197840382-1386116225#7285, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=560a7625-0046-48a6-ae1c-ee56e9fac34f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:56,991][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1246196523-668334824#7286, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,059][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:767573549-1386116225#7287, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fdc407cf-7635-4c90-bb7a-8298a26b9998, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,062][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1441574854-1737199331#7288, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,127][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1164310588-1386116225#7289, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a2bf5570-2a99-4b88-9dca-db12c5420b7a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,130][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:379877138-514776468#7290, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,193][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1037921874-1386116225#7291, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6341b866-0336-4c80-9fd1-8980cbd7f364, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,196][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:772588312-365673644#7292, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,262][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1613099306-1386116225#7293, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4bdb6de1-b9bb-47d1-ae9e-4a19c418556e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,265][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:543315424-1221094917#7294, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,338][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1287166549-1386116225#7295, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f17e030c-ebcd-4e3d-9d1b-944eac7c2e83, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,341][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1335303-1223856757#7296, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,398][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:645283814-1386116225#7297, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=18506f5b-cda5-4df7-b83f-5a6138f02849, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,402][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2047677406-1899950812#7298, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,467][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:118219555-380562414#7299, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:57,473][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1880062596-1386116225#7304, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ee119fa4-e7e9-4619-9027-9a252c66c9d3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,478][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1114599905-772493417#7305, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,503][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1393825975-1701976918#7306, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T17:59:57,546][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1072462094-1386116225#7311, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=785b4390-b3d0-408c-9fc5-370007c04ca4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,550][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:699154136-218337028#7312, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,605][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:932062868-1386116225#7313, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e5216337-6d0d-47f8-a551-47a43e9dbe0c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,609][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2124545971-201126810#7314, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,687][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:537962124-1386116225#7315, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=32add733-2707-40bc-baeb-cc9d36b87306, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,691][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1131300547-1376033285#7316, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,754][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:734012240-1386116225#7319, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=662228b7-180d-48e5-904d-f8f8e0aceb91, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,757][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:589933457-1327885389#7320, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,814][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2008550191-1386116225#7321, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d007d1f2-262b-4d60-8412-8fdafdd6c91b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,818][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2118968116-149850698#7322, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,888][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1043707587-1386116225#7323, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=be210566-8eca-4766-84c3-3880b174c35c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,891][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1727389157-114430706#7324, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:57,954][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:157496153-1386116225#7325, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d0198263-6736-4430-91e0-88ad7898b49a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:57,957][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:730628679-1029656646#7326, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,016][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:435802582-1386116225#7327, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=46d7cf6b-bf41-4001-8f36-244c751c02d6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,020][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1376524110-1120656306#7328, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,092][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:594241500-1386116225#7329, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a1981fc8-9120-4779-a82b-8922dca1fba7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,095][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:228259606-1249926019#7330, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,165][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:821780188-1386116225#7331, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d8c85f38-91db-4e38-9265-016bd748ed2e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,168][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2021950458-1687077139#7332, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,228][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:538069601-1386116225#7333, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bda2ea84-d89e-4a8c-86b0-66490be41fb4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,232][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1056356563-1994567885#7334, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,309][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2008172756-1386116225#7335, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=299e4cfa-5b87-4b45-b289-b8b7100030b5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,319][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:715482808-951172262#7336, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,376][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:253727865-1386116225#7337, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1554172c-4633-4c7f-a382-06c697c64e59, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,379][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:864729923-1343033639#7338, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,445][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1702377208-1386116225#7339, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e33785af-6161-493d-8ff3-55b28b6237d6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,448][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1369189688-1694367521#7340, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,508][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:38469726-989314329#7341, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,521][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1460349300-1386116225#7343, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=82f059dd-ecbd-4558-a5cd-8b4f8ee6ade6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,524][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:179483282-20791314#7344, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,600][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:840576937-1386116225#7345, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2d0093ac-0209-4e83-8d94-3bcf6db538ae, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,603][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1538189723-1555466370#7346, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,643][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1125091236-676950535#7347, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,650][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:77051046-1821232686#7349, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2204.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2204, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,683][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1104529871-1386116225#7350, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c4e76c36-e6a8-4d80-a333-4621e1574be5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,686][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1392531132-816500625#7351, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,748][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1698625787-1386116225#7352, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=24ab35e6-188a-4347-b41d-f5b1959bd755, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,752][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:161574822-190790658#7353, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,831][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1810906529-1386116225#7354, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9a3a6248-b6ad-4101-bb36-56e2fc5d3475, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,837][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1513827939-1007400178#7355, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,903][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:141828113-1386116225#7356, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aa4e0b6a-d362-4390-b208-f7f4873239bd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,910][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1045766282-1285076078#7357, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:58,972][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1728056161-1386116225#7358, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=58e045d7-e540-45a0-b1d5-cdb1dbed2e57, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:58,975][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1330889640-773739156#7359, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:59,031][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1969999450-1386116225#7360, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2ea072ee-1639-45f4-a44a-f737479c648e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:59,034][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:970487469-812293692#7361, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:59,103][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:521988195-1386116225#7362, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=56d480c2-f962-4822-8da6-3a35885555cd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:59,107][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1635079450-1025712466#7363, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:59,168][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2052027624-1386116225#7364, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4e6c04e9-fa14-487d-8289-e6090af3a43a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:59,171][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1194607941-600553697#7365, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:59,238][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:48813106-1386116225#7366, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=96c8a824-10cc-40db-bd7a-aad095868daf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:59,242][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1759376391-1280336383#7367, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:59,294][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1026507689-1386116225#7368, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=590def45-5a3a-4e71-bfbd-d59ee9cf7a39, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:59,297][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:690686813-1473880617#7369, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:59,354][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:119837934-1386116225#7370, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1d3c5a4c-2bf0-4d04-a20d-bb9fa78eb4ba, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:59,357][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1344477465-523486587#7371, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:59,397][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1857242147-1960930102#7372, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:59,434][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1257432259-1386116225#7373, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a14af8f3-4280-4e80-9844-029f8f2d5ae9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:59,437][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1019367266-1037782428#7374, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T17:59:59,783][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:181996393-619083597#7375, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T17:59:59,852][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:711197701-1386116225#7376, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9715c6f9-c367-44b4-9ea9-66e5c71365e8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T17:59:59,861][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1237156952-922418818#7377, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:00,014][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2003646838-1386116225#7378, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2514d156-7d1f-483a-8dd4-c7162d822d43, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:00,019][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:409804384-2134706012#7379, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:00,163][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:892204721-1386116225#7380, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5bec8cfb-a6f4-4090-abb4-29dcf505e32b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:00,169][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1518846887-996685979#7381, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:00,262][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:585540422-1386116225#7382, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=57c3c36f-a74e-4b87-aaae-d7048ecd53f7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:00,265][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1267122056-1553356355#7383, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:00,342][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:673763123-1386116225#7384, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=44170ab3-b845-4815-a199-6be24a0f4b43, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:00,346][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:954743949-1111386091#7385, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:00,419][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:915469769-1386116225#7386, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fdb7d194-daa9-4d28-87e3-0c18a243414f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:00,422][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1010498267-1391494993#7387, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:00,478][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1809715923-911059206#7388, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:00,559][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1825703380-1386116225#7393, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b860459e-94f5-43cc-bc34-b068e7fbd191, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:00,566][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1769341901-966338740#7396, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:00,630][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1365804692-1150315256#7397, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:01,008][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:848460611-833697188#7412, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:01,140][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1738759723-1919559789#7414, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:01,210][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:896162674-344159999#7416, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:01,243][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1772892226--53075430#7421, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:01,243][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2067359643--52387744#7422, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:00:01,311][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1244021850-770717607#7424, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:01,407][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:361131672-1386116225#7429, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d10aaa66-c614-41d8-a14d-38207fc2d3a9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:01,410][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:575375464-720212547#7430, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:01,504][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:613023580-1386116225#7431, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=08b6d434-c351-4b7e-8ca6-ae0e456804c7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:01,506][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1385236432-2121289514#7432, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:01,585][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1485419196-1386116225#7433, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=640d5741-bcbf-430f-9e6b-8db301b75828, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:01,589][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:8818756-1186948509#7434, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:01,672][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1748763529-1386116225#7435, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d01ccf51-1181-466d-ab0f-46cffd68adcb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:01,684][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:483018013-1623146673#7436, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:01,767][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1315455672-1386116225#7437, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bbcf82fa-0b7d-4a5e-9bfd-bd1bad474e51, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:01,777][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1418717266-1772219603#7438, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:01,874][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:636495670-1386116225#7439, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=91d56833-4e8f-47b1-9f6e-de8b5fda4aac, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:01,879][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:663596631-1026410719#7440, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:01,973][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:821656934-1386116225#7441, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e9a23e19-a16f-45f7-b820-d1d3e861641c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:01,991][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:374041168-1894439742#7442, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:02,094][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:953221307-1386116225#7443, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7668718e-df9b-4dc6-a741-22d61bce1335, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:02,097][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:987708514-1768386774#7444, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:02,181][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:882960539-1386116225#7445, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=51c9816a-d1ff-4dfc-9c6d-2e2e1426f7d8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:02,185][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:607358528-36082387#7446, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:02,266][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:273522862-1386116225#7447, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8324cfec-7333-42c7-865e-dcb533806827, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:02,270][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1096385241-334146532#7448, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:02,400][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1797582220-1386116225#7449, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=655b8bab-ba86-4760-88c8-51b8eed2400a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:02,404][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:722691671-496355820#7450, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:02,526][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1539374219-1386116225#7451, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a41c6be2-1914-4114-aa35-f94bdd85eea9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:02,529][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:274194381-1453646760#7452, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:02,612][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1754739544-1386116225#7453, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3764ec54-1bab-4c8b-a4aa-79d598e082fa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:02,616][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2069593527-177436887#7454, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:02,704][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:354592308-1386116225#7455, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c528c55b-47e1-4b45-bb4a-d46738a12eab, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:02,707][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1147131342-1929286522#7456, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:03,463][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1504080273-1386116225#7459, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6a2fd70c-560e-435b-9038-f78035ae072d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:03,468][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1382612567-1126985997#7460, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:03,489][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1889099085-2139508983#7461, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:03,525][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1443772028-1654584689#7466, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:03,532][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:767994942-336306693#7471, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:03,584][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:90110602-1386116225#7473, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=57956339-35b1-4b04-a0ef-6bd47e024004, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:03,588][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:856808238-640783680#7474, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:03,696][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1417811082-1386116225#7475, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b6e213d8-b561-4ffc-9e49-b5aff45b79b2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:03,702][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1049520868-2002582714#7476, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:03,813][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1410403112-1386116225#7477, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=273e8ef3-6b16-4f8d-bbf2-49df0dc2b23c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:03,822][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1244234196-1612219972#7478, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:03,911][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1045545666-1386116225#7479, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=14e028f3-f992-4382-8faf-e775f7ffc008, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:03,917][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:990156959-520749853#7480, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:03,977][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1286206760-1386116225#7481, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a7fc56f2-2dc2-4232-9ef4-aac042cd444a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:03,981][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1376031316-1140722211#7482, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,065][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:147558003-1386116225#7483, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=36b40b2c-978c-4389-96e4-d52dbaa70c34, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,068][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1554100899-326910145#7484, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,137][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1423940617-1386116225#7485, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d45e71fc-0885-4698-a160-026206e1a4e2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,141][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1704785608-1442862922#7486, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,202][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1688736642-1386116225#7487, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0c40c7b4-1507-4a73-822e-4fac86e67e8a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,205][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:124113795-1986982374#7488, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,273][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1730919050-1386116225#7489, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ac4ac49e-a0ef-490a-b6ba-7018ab327421, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,277][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1950774101-539545744#7490, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,336][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:860297226-1386116225#7491, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a384a27c-036e-4587-ae82-13f442034a56, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,339][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:158918365-135845845#7492, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,410][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:458286527-1386116225#7493, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4a04bdfe-5a7d-4e15-b418-73f7d701c658, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,414][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1325650264-701052024#7494, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,434][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1741250962-698459329#7495, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:04,488][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1069597012-1386116225#7496, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=14271c75-a51b-490c-8694-87be53ea6ff2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,491][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2029599164-410236975#7497, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,545][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:84267980-1386116225#7498, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c210d9b5-4942-4213-ad50-b0737f701963, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,549][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:874155842-280605356#7499, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,619][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:235478062-1386116225#7500, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eeaf566a-0353-4e0b-ab1d-af376b5ea666, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,623][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:565988830-613100294#7501, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,688][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:308833613-1386116225#7502, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=117e771c-aff5-4b97-9f41-4e02adfe1414, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,691][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1150013514-435824293#7503, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,749][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:731632693-1386116225#7504, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cc3aabfd-d415-4bd6-943c-298d06bffc87, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,752][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1516980985-667257257#7505, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,810][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2877753-1386116225#7506, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=66e2d315-b273-4436-834d-f0e8a01b2d65, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,812][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1037436059-1976681098#7507, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,819][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1174764926-399930102#7508, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:04,873][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1654203973-1386116225#7509, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=61e2df62-5e64-4f10-a390-d7629a072471, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,876][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1978491467-2121151902#7510, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,931][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1025800462-1386116225#7511, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=03a70193-a32a-4321-8480-b0cf959893a8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,934][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1930494996-145710446#7512, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:04,994][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1353129305-1386116225#7513, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fd27e9ea-f67e-411b-895d-3baccc016447, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:04,997][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:382638346-428051592#7514, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,049][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1958909049-1386116225#7515, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dc9d9ffb-82e4-475d-8228-429d4d94d92e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,051][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1648957960-276786946#7516, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,101][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1598177194-1386116225#7517, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c1954058-7fa5-4fb7-a4cf-095f3ad84b00, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,104][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1922806478-2004457433#7518, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,156][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1234467304-1386116225#7519, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=22db90ad-abdc-4acd-add9-25fd0154b2c1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,159][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1565153892-908474800#7520, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,220][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:124100639-1386116225#7521, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f8aadc6a-d39a-4122-8fd4-ceb7b040ebdc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,223][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:428138616-586709966#7522, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,281][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:16684001-1386116225#7523, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=44140b28-ef33-40f7-b331-dbd928ae038a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,284][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:770608271-713218875#7524, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,355][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1240877676-1386116225#7525, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f8504a7c-ce8d-4d2f-b7ed-3d322f85fdd3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,359][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:339437875-1971082865#7526, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,435][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1635458051-1386116225#7527, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2b726474-0aa6-4c11-be52-f1c84d91f387, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,439][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:749680293-273185544#7528, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,499][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:447308604-1386116225#7529, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c59d3e7d-6e7e-4897-b843-d15362bae685, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,502][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:493022508-1319196083#7530, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,564][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1857849875-1386116225#7531, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6cbfdba2-002b-4d31-a3ad-1ab998b1fcfb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,574][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1056050502-427578346#7532, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,641][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:358750338-1386116225#7533, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=928298a8-cf62-4ec3-8b95-79dd123b7b99, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,645][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:335402596-1463092581#7534, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,719][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:750818601-1386116225#7535, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b12f1860-9a9d-4e3f-8a3c-44a13939b75b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,723][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2030283512-35345713#7536, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,859][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2107749134-1386116225#7537, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2d18d223-e08d-4072-9e72-b86062946f1a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,863][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2133388768-13226317#7538, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:05,994][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2001158843-1386116225#7539, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1d10b511-b9dd-4bd3-9de7-8a29a3576b7f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:05,998][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1685716934-1007918245#7540, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,020][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1919214297-1520781409#7541, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,074][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:720157176-1386116225#7543, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1bdbc985-22bb-4792-bcab-4f45f705fdc3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:06,077][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1744008324-844374153#7544, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,137][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1120047330-1386116225#7545, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fc12f545-e528-436c-9b8d-9f7d8325052a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:06,141][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:229560891-1896202334#7546, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,203][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1648817823-1386116225#7547, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1425dba6-f3b6-4088-b05d-c05ef6107a2e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:06,208][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:886390709-1326521374#7548, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,281][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:273228434-1386116225#7549, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=27301df7-27f5-4857-adb2-127e071edd69, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:06,284][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1173281802-1490774933#7550, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,342][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:535657852-1386116225#7551, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3c4cdcf0-39da-4825-9a68-ec9e914cdc11, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:06,345][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1189708193-1976835066#7552, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,404][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1993359638-1386116225#7553, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b0b50226-5312-48f6-9cc7-f549e3f60fa7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:06,407][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:35836973-139241793#7554, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,460][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1561487481-1386116225#7555, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e6a6b775-f24f-4a96-948d-e0fd2024182e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:06,464][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:691948092-1026121866#7556, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,469][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1601624513-633853589#7557, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:06,484][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:263121456-152164443#7564, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:06,532][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1203313627-833697188#7579, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:06,547][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1346552015-1386116225#7581, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=348fb0b9-b087-477e-baaa-59e3ecb8c8b5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:06,549][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:517815070-1172958547#7582, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,602][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:867362900-1974469205#7583, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:06,623][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:46322230--52387744#7588, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:00:06,644][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:147534920-1386116225#7589, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f72455e7-2385-433e-985d-1eac7adbef63, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:06,653][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:740265293-1506312241#7590, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,688][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1292876380-473415361#7591, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:06,762][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1284652527-1386116225#7596, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e28bd8bb-bc98-411c-a2e9-02915a8653fb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:06,769][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1363604804-1630238826#7597, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:06,894][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1087050552-1386116225#7598, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c5107621-b803-46a1-8b11-98505944d2ae, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:06,899][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:493564811-2078345655#7599, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,012][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1102300809-1386116225#7600, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=efc53c34-15ea-4217-8d01-a2727f612005, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,018][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1501126484-499828891#7601, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,094][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1846924836-1386116225#7602, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=158ab709-4dbb-4bea-b349-4fbda113cba5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,097][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:835572449-584951923#7603, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,176][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1763189411-1386116225#7604, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3e89ba42-6bb3-4833-9545-a79439bac125, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,180][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:696020306-1987700806#7605, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,261][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:967329994-1386116225#7606, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6f83a684-b86c-4a06-affb-06a899711aeb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,264][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:294484070-1532072440#7607, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,334][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1658022156-1386116225#7608, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a5f2b693-98e1-4cfd-bd1d-8aedd35dc070, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,338][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:424055684-1668454018#7609, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,403][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:888870213-1386116225#7610, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=290868ca-2e28-4107-8a3e-10ca18c4d298, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,409][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1301905887-1617883483#7611, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,477][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:392146258-1386116225#7612, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=759eab9e-fbf5-413a-9e15-ea548fac53e1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,480][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2078458817-2054435355#7613, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,558][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1791607321-1386116225#7614, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e44b32b4-3df0-4c81-a668-85d4f343e4e0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,565][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:829866417-1663179104#7615, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,634][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:596985673-1386116225#7616, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1c0b6017-7c13-4f7e-a367-34c5fa0c90f2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,640][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:124293160-9740861#7617, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,709][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1930314326-1386116225#7618, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=53021dac-9a8d-48d9-a998-27cf13370f80, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,713][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2049506417-964872908#7619, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,773][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:471990923-1386116225#7622, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=077cac47-ef52-47a8-972f-eec0799eedfd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,777][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:499117995-541672217#7623, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,852][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:263334262-1386116225#7624, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fcffbb84-3013-40dc-8512-0013ce0c9854, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,855][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:59266129-1630023996#7625, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,920][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:194246539-1386116225#7626, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=befabbbc-e64d-4eb4-95c0-23a75e021c0b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,923][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:359962134-1419731509#7627, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:07,976][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1956513867-1386116225#7628, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dc7089f4-7a7f-4b49-8b99-be977e5ba359, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:07,979][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1613072124-1364228296#7629, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,038][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2129737245-1386116225#7630, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c074b3bc-c972-4127-8da0-4532cce96836, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,041][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2057942488-913825303#7631, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,101][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1681094185-1386116225#7632, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=efee3049-bb31-47f7-90db-be5f40bcb220, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,104][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:327546220-607487409#7633, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,156][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:742027334-1386116225#7634, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9aea5b32-3f71-48a3-b045-057bf52dd7c1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,159][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1405602262-1876260951#7635, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,213][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1740988433-1386116225#7636, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ad187afb-f39b-4f12-b364-94cd2187c9f1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,216][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:411210991-1969649488#7637, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,278][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:833994347-1386116225#7638, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=64d974f4-6467-46c0-892c-dccf2c07cd4e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,281][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2101122468-1905611520#7639, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,329][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:932144789-1386116225#7640, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a23201cf-6617-4502-8ec2-2472380fc0b4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,332][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:727040233-845017490#7641, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,385][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1762371978-1386116225#7642, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2c780e76-6562-47d2-ad44-39ffce8c87b4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:637325808-548081454#7643, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,448][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2108144584-1386116225#7644, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=545e4f75-eae5-40bc-bb83-aac830ce3644, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,451][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1238637071-174334356#7645, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,521][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1926139273-1386116225#7646, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0e0e3916-bed6-463d-99ed-27702ae434ae, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,523][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:846660067-1528459712#7647, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,525][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:304284423-1780778009#7648, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,577][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1884914614-1386116225#7650, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=da11e08e-3a8f-42e2-a87c-b1522fef620e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,580][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1836079622-1654186928#7651, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,640][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1996356337-1386116225#7652, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8c6e5c70-351c-4871-880a-ad3792fad935, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,643][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2089780692-1947434996#7653, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,654][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1747578847-644070031#7654, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,660][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1236034607-1821154249#7656, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2203.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2203, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,710][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1214977779-1386116225#7657, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c69261d4-60f4-451c-821d-9b89f6abc2d4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,713][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1364744061-1366935975#7658, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,783][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1056632995-1386116225#7659, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c0de5522-740d-4fe3-8864-4bd47eaa6d9f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,786][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:783721729-1028058133#7660, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,844][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:585973483-1386116225#7661, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d39731de-8594-4295-86c8-304a151e3bd1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,847][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1266396669-1358858046#7662, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,917][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1515388784-1386116225#7663, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=848cb851-20ea-4d68-9328-3888e5d68311, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,924][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:285444279-117562159#7664, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:08,994][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:602041222-1386116225#7665, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b55c842b-e6bb-4cf4-b865-81978bbe3c26, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:08,999][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1854323189-1674433186#7666, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:09,081][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1780266327-1386116225#7667, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9a6bf5eb-f34a-457e-b110-68928813ec19, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:09,085][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1519537609-16780927#7668, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:09,170][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:215323711-1386116225#7669, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7f785c75-6e96-4ee7-b3c5-67ef57326e54, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:09,173][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:57425663-1272502110#7670, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:09,244][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1252674476-1386116225#7671, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=086e5caa-1f08-44ea-8089-cc9740ea972d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:09,249][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1795050154-143067852#7672, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:09,314][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:99110565-1386116225#7673, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d8933ae2-e694-4a7b-ad71-121cc3cad7ae, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:09,317][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:495424159-87306399#7674, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:09,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:903191455-1386116225#7675, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=103290e6-8fa6-4e77-a3e1-85fb2f1b4ed8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:09,392][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1913616102-1404899666#7676, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:09,452][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1266472592-1886436018#7677, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:09,480][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:61727411-11712163#7678, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:09,486][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1999201138-1386116225#7681, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2e6cce6d-adab-48c6-b4e1-12706616cb25, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:09,497][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1849231211-1728640012#7684, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:09,497][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1535234995-1935021193#7685, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:09,592][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1552178750-1386116225#7690, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=51b500b7-e3c4-47a4-ab55-2db14a6b76cd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:09,596][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1619694639-1177470218#7691, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:09,694][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1713824087-1386116225#7692, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=093bae6b-1050-4963-a8bd-f9516b389f96, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:09,697][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:478438620-1308164674#7693, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:09,763][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1008052432-1386116225#7694, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9a19c0f2-b5ba-45bd-8485-94b3b03ff8f3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:09,767][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:118145357-941090804#7695, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:09,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1039731110-750478817#7696, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:09,858][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2112543122-1386116225#7697, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6457620-8162-46f4-ac4f-06b3070fe425, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:09,862][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2059774364-251935579#7698, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:09,932][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2028458807-1386116225#7699, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=50d3bdff-735b-4c24-b259-705b2df8c4b8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:09,935][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1399497712-70543688#7700, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,002][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:709117046-1386116225#7701, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=69a0e054-5607-4cf6-8744-53a3022a66c1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,005][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1828476002-1787764526#7702, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,065][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1305892126-1386116225#7703, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ea0d1e48-9373-4444-8541-9cd2c929710f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,068][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1169809190-1273552055#7704, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,134][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1494015115-1386116225#7705, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f952a396-ff8b-4d66-80df-e252bc1ecdfa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,137][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:638389265-759605017#7706, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,201][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:549899106-1386116225#7707, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b9d4a50d-31db-4006-8b58-4b3a0fa86e10, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,204][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:521253749-1362249986#7708, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,267][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1230258770-1386116225#7709, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=627e7fea-0b01-458f-a4c5-b622419f944c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,270][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1600069057-1304921924#7710, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,344][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:251571623-1386116225#7711, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c7b3af01-883e-4175-b9c1-7060ba241f4f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,348][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1708341496-1120243862#7712, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,430][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:860475949-1386116225#7713, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=79d78a33-3c0a-42a3-82c6-f9e102483549, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,435][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1210172022-885598066#7714, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,513][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1516654685-1386116225#7715, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=53587382-f87e-4b8f-82a5-3ba002b62b94, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,517][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:658717062-1631022442#7716, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,582][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:473445513-1386116225#7717, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3d15441b-f9bd-489d-a1e7-cf624f4c7e77, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,585][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1957981163-1250288626#7718, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:277060597-1386116225#7723, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2bcaff50-8d96-4fdc-8749-d27ba6dfee4a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,666][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1304586512-452900976#7724, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,727][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2139177646-1386116225#7725, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b951684a-9e5c-4a41-958a-9bad9994a1bd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,731][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1934697112-763715339#7726, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,805][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1121406963-1386116225#7727, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2518f557-7357-4b0e-ae73-3bdd03889a1b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:926347573-1292452009#7728, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,904][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1257448196-1386116225#7729, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5a6ea2a8-2d7a-4595-92a8-6eb135109760, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,908][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:841176446-849130838#7730, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:10,977][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:890746788-1386116225#7731, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fcd24472-b3e8-41de-a4a4-2b4dd3ad19d4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:10,981][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1714374913-1318021151#7732, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,024][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:426660509-298613891#7733, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,050][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:230115578-1386116225#7735, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1904f007-09d6-4b0f-97cf-c51ff63f2a6f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,054][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:944572099-1398559213#7736, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,123][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:562435937-1386116225#7737, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c1f942d4-2d3b-4896-aaa4-795f1ff40364, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,126][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:373386035-1189747750#7738, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,195][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2005466671-1386116225#7739, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=40e37012-1839-4303-a7a9-24ea9622ca1d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,198][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1713685152-2074158500#7740, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,268][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1841044954-1386116225#7741, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=82ea11d3-40d2-498a-becc-68cb808be42d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,272][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1568014276-486803208#7742, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,339][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1870302473-1386116225#7743, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=84f81fa3-ae27-46ff-a836-b4295878fa78, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,344][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1646596081-274483118#7744, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,416][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:761085674-1386116225#7745, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=256a89e4-c169-4ce2-bb01-a862b0106d12, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,419][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:376761485-1558459189#7746, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,485][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:779583024-1386116225#7747, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4843c261-c951-4fbe-9341-ae062d460f82, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,488][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1780072314-1538799152#7748, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,546][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:641260521-1386116225#7749, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c7ad8eb3-5586-4a65-82f6-60eebdc5e7a5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,549][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:858503136-351157392#7750, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,633][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:243106187-1386116225#7751, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c1d4e537-0f61-4d77-82a8-d15b7f9900b3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,636][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1861936190-55990#7752, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,706][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1701805210-1386116225#7753, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2dfac718-6de4-41f4-8651-67152d6b58a8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,710][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:125618277-1050548128#7754, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,770][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:953008047-1386116225#7755, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e3d03e6a-4ab4-4798-bd58-bae741ecead4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,773][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:651730816-1199985886#7756, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,833][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:166426777-1386116225#7757, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c6b0dd91-6cbe-4d80-8109-32302c38d01e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,836][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1552850636-1053310530#7758, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,889][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1260236257-1386116225#7759, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c057ccb4-f189-4fc9-a057-fafd102eab6c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,892][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:434125739-825274021#7760, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:11,953][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1324727535-1386116225#7761, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fff1b9e8-2b2e-463b-9f1b-95326409b8eb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:11,956][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1747022453-1887707577#7762, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,012][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1148583050-1386116225#7763, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=27242eb8-0c65-423d-9dae-4410f94e2f8b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,016][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:654582319-1154829920#7764, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,082][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:361572010-1386116225#7765, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2ad024fb-0e63-4cb1-90e8-cca050c149df, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,085][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2130118973-2028226966#7766, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,142][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:380415652-1386116225#7767, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=026d1e1a-2361-4a43-966c-71ad2cbd9555, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,146][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1793618605-747642924#7768, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,231][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1986159825-1386116225#7769, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bdfb820f-3bb0-4dbd-8730-bbec8d34aecf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,234][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:88616247-740051497#7770, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,310][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:27303622-1386116225#7771, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ab100a13-0d21-40f0-ac68-6683aa0ab078, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,315][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1677801167-543465197#7772, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,398][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1860683210-1386116225#7773, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=876df18a-cb87-4cd5-9060-2dc87e18909b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,406][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1806971006-116311177#7774, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,478][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:49918287-1386116225#7775, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=19b36259-c377-4ae4-8c48-b1bbe612814c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,484][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1449086797-1690799546#7776, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:12,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1382083919-412946621#7781, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,496][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2135085096-1130332683#7784, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:12,529][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1133014712-833697188#7799, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:12,570][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1755792811-1386116225#7801, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=61c7ed9f-d2e0-4c91-a272-db95d13ac7f2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,574][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:656142905-1917090048#7802, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,590][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:153312980-1619594312#7803, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:12,600][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1610192264--53075430#7808, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,611][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:36472589--52387744#7810, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:00:12,657][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1358168318-671525603#7811, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:12,663][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2036026010-1386116225#7815, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fc9f7296-cd32-412d-9f7d-617141aa0972, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,667][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:531218003-1865068200#7817, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,731][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1927696412-1386116225#7818, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6054666-5179-4fc2-8eee-ea0c27c7c018, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,735][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:958799138-2030099626#7819, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,812][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2123831297-1386116225#7822, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7d43387c-3715-4bed-a723-c4ebd54656a3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,815][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1613428867-1768699561#7823, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,892][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:376849058-1386116225#7824, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=100bff1e-73fb-4053-8464-8e84934049ae, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,895][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1357318013-1732121346#7825, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:12,954][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:638652213-1386116225#7826, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=12d889ea-af4e-4b8c-8b5f-333744df4130, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:12,957][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:697822772-1866166064#7827, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,020][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:867663266-1386116225#7828, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=447f346c-5fd4-411b-8334-ebd4f255e0ee, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,026][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:493990982-193007506#7829, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,096][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1064809277-1386116225#7830, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2fa8fb9d-98fb-4139-8000-8546cba9cbe3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,100][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:933593884-661045802#7831, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,167][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:605598923-1386116225#7832, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9e42f548-e893-4d37-af9c-fdde1d720574, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,169][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:645137710-1028837279#7833, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,233][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:750005645-1386116225#7834, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bdab17f9-18ce-460e-b15c-d9b0a0f3e632, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,237][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1307273788-1269844954#7835, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,301][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1614109444-1386116225#7836, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=239b2f44-b2db-47e2-8edd-7201439df104, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,304][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1843452618-2068641728#7837, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,360][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:845913576-1386116225#7838, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fcd89c43-4af8-4cde-9594-914f12597ae4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,363][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2026638810-319929987#7839, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,428][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:260024790-1386116225#7840, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8e70d2cd-765e-41f7-b03a-56fa9aee315f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,431][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1637216524-2033156665#7841, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,493][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1741999673-1386116225#7842, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6e1a8913-de3d-4ebe-9d47-c98c93205d99, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,496][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:353888780-1539601459#7843, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,526][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1593772856-530293720#7844, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,559][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:905346477-1386116225#7846, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d1fb5291-a82a-4225-af94-7ff335e5cd3b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,562][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1307304652-1810601602#7847, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,619][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:690781508-1386116225#7848, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=71c7b8ca-79a4-4823-a9fa-54d83683976a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,622][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:791770841-1029573745#7849, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:171360990-1386116225#7850, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eb90f33b-5969-4d96-8ab9-83f5e2217e11, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,696][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1085950081-1687775729#7851, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,770][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:703192215-1386116225#7852, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=64fd7092-ce42-443d-b297-ea1777f3f4c2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,773][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:368429894-119109433#7853, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,839][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:677396682-1386116225#7858, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5d704611-a52f-4285-97cc-f83228e63730, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,843][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1326070837-1948152169#7859, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,907][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:947019884-1386116225#7864, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1541603f-0db3-4958-a787-20fe3ea00269, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,910][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:314442168-214662222#7865, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:13,963][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:198820231-1386116225#7866, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f5be1454-a9e3-4871-94e9-55fe1ea5d203, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:13,967][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:545501584-1121110009#7867, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,042][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:355269345-1386116225#7868, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b10e43f3-b3ef-4dcf-98a4-edd626436ac4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,045][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:968298443-1262359022#7869, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,114][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2106954167-1386116225#7870, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=73d9c0a4-ad12-4fc8-b7e3-bfc9dc776065, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,118][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1736774793-1716356837#7871, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,201][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1573345955-1386116225#7872, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=890203fd-0807-4ae1-b343-2f237bdec32c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,204][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:210657413-1138760897#7873, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,274][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1234223350-1386116225#7874, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=98e2414c-6331-471e-af32-d8f4d2626b55, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,278][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:786798885-1360027188#7875, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,380][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:307578563-1386116225#7876, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6928e80c-ba94-4ebe-a5c5-2e4569dce98f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,386][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1561174799-1596138810#7877, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,468][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1594150241-1287843243#7878, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:14,488][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:202449172-1386116225#7879, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6df0cc23-6a6a-4fe1-935e-27e1f59cd8bd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:885660939-74433862#7880, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,576][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1117993476-1386116225#7881, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6cf7e524-4932-4eaa-9f7a-2abe78afe26b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,580][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1195358917-603575660#7882, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1506177440-1386116225#7885, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=70f5f6d3-22b1-4d71-a5f5-3bb90172bd27, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,667][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:40764294-943552668#7886, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,758][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1426229314-1386116225#7887, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6e8b7237-d22a-4952-b170-79792f915f3a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,761][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1067690035-1302589042#7888, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,840][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:503940802-1386116225#7889, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8c905aef-b980-4d6e-8475-5332fcb1a15d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,844][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1602772441-2101908523#7890, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,872][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:801777038-2108135715#7891, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:14,918][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1616672219-1386116225#7892, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=792943d9-e1ca-4a9a-9dff-130247f0fe17, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,921][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1493982263-655684813#7893, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:14,984][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1723539341-1386116225#7894, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0325fbf8-ed9b-42a0-a039-1c712c5623a8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:14,988][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1707760684-1587304774#7895, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,064][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1588489412-1386116225#7898, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c30d6570-d73d-4f6a-b978-e436b2b05f85, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1624725483-1472941281#7899, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,139][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1805744439-1386116225#7900, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aaa9b89f-07cc-4889-9b54-b98e33ba8019, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,143][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1178923211-485924839#7901, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,214][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:290940124-1386116225#7902, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=07ccb2ef-157b-4a3e-bdcd-8678e121546d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,218][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1902108416-284994376#7903, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,286][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:954013463-1386116225#7904, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3dfdbf3d-b3a1-42fc-b8b3-e2ed43931e94, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,289][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:310834516-489594843#7905, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,357][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1761460701-1386116225#7908, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8d6b942e-2001-4750-a45c-d7f74ce05d6c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,361][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:952637050-490829922#7909, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,443][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1954081878-1386116225#7910, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=74f47b15-530d-4cf0-a1dd-30898e98361b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,446][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1921853485-168725440#7911, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,487][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1243608988-371141226#7912, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:15,503][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:159471675-2120416829#7917, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:15,529][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:479879307-1386116225#7922, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=084799c2-fdb9-4e1f-8f5a-b4f993c07e45, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,539][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:800269586-887401609#7923, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,617][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1254777182-1386116225#7924, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fdb13812-e670-4332-9c00-479b3ce4c5eb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,619][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:94101172-867627168#7925, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,688][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:581403323-1386116225#7926, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a02b8385-c76b-4822-9c99-9354b82012bd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,692][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1006556960-1615581333#7927, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,793][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1685856204-1386116225#7928, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cdb34f12-6b90-4a26-a2d4-bf3cb2af9f4e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,798][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2060516258-937059343#7929, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,873][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:153867545-1386116225#7930, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=725bc632-2831-4047-8742-cfcd5658cf49, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,877][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:221063567-1893588579#7931, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:15,960][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:348337771-1386116225#7932, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ecaf9c2c-a51e-42c1-af78-8d0fb0c7d9c7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:15,964][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1125628663-663917131#7933, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,024][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:958561820-1386116225#7934, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d665e7bb-d08d-4902-a8ab-d33136c82468, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,026][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:887060285-1247916883#7935, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,031][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2043834526-1403659046#7937, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,099][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:470012145-1386116225#7940, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=989f2f37-db86-4fc2-9791-1b2702ac02df, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,101][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1539248905-830725728#7941, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,166][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:858941541-1386116225#7942, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fcaaee6e-1e13-491a-b91b-8ac9d0dcaf20, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,170][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:825533098-305191134#7943, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,262][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1039103014-1386116225#7944, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a22958bc-b379-4620-be7e-7fefe3e08c97, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,268][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:493440390-1541493833#7945, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,342][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:883283497-1386116225#7946, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=71e8b1d7-77f7-438b-b209-f9e05d9e4ae2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,347][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1634292726-918234912#7947, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,424][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1739157154-1386116225#7948, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6f3ac84b-0986-4263-8883-a8b980946f12, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,427][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2108160224-1450897985#7949, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,485][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:966217097-1386116225#7950, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=72d4bc2c-6311-453f-a7fe-9c366f966868, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,488][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:367523943-1464165059#7951, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,554][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1454140048-1386116225#7952, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ce9beaf4-bc39-4c9d-8015-3045b7c3d122, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,558][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1431604937-2136633540#7953, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,627][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:66406038-1386116225#7956, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a2d193d9-c174-4a59-a92b-85c8a78eace9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1796944419-1114839072#7957, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,698][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:907790392-1386116225#7958, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=216bcc2e-3cec-438c-82f6-b77a6cb234fc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,702][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:744022343-518018245#7959, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,763][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1149824289-1386116225#7960, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9de06db8-8c6d-41a5-9e6a-c46300eb1768, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,766][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:742045568-1191389593#7961, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,843][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1540950976-1386116225#7962, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c668c362-f7b0-4811-b0cc-17f2d5be2bac, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,848][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1480262783-566509135#7963, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,917][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2136314895-1386116225#7964, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=60130824-dfe4-4adc-a719-511c314009d2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,922][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1816201006-1826221605#7965, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:16,983][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1827636151-1386116225#7966, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e81ea264-84d6-4229-bc84-7c89fabb062a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:16,986][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1061783497-1532338041#7967, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,055][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2027875056-1386116225#7968, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=751ca343-67cb-4849-a639-33522db6e9c2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,058][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1757166695-456690038#7969, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,119][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1826710335-1386116225#7970, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c1266ddc-97a1-42a7-88f6-adeea338105c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,122][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1667734841-1790040630#7971, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,187][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:899521839-1386116225#7972, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c08ce78a-a69c-4248-837f-5d36f6d3ff18, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,190][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1384314936-231946500#7973, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,250][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1767322338-1386116225#7974, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a3083830-2cb3-4e85-918c-bc681a0a1155, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,253][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:821739010-1971110685#7975, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,312][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1643372463-1386116225#7976, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9034c388-5de7-4f45-bedb-b4450a2a9687, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,315][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:828584273-1418499025#7977, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,374][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1207682678-1386116225#7978, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c5ec13b0-9a52-4bdb-813c-64aaad9927e1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,377][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:940210049-281747560#7979, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,439][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:543763387-1386116225#7980, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=169fbbad-a754-4ed1-8580-b0899205a76d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,442][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:968393142-1382375295#7981, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,513][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:467987771-1386116225#7982, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9198e25d-81e8-4a34-854a-370487804f27, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,516][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2006420457-1269181717#7983, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,591][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1894552623-1386116225#7984, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0fc193bd-0fd6-4082-81c5-d39a58af6b49, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,595][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1912679990-964832092#7985, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,672][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1127639036-1386116225#7986, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2fa1283e-b2f9-4c2f-8d01-13247d2d2c94, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,675][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1475333721-753154572#7987, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,750][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:68434951-1386116225#7990, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eb1a8b63-efaf-4cf7-b430-c8765fd27c43, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,753][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1961730814-1574516540#7991, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,823][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1817321156-1386116225#7994, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=53e0abb5-5860-4a6c-9c76-0a7a3b921adb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,826][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2015798437-704780218#7995, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,895][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1384983916-1386116225#7996, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8010e247-5f54-44c9-8301-532a32f7c553, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,898][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:785755591-1671112500#7997, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:17,954][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1495159610-1386116225#7998, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=037fc0d2-f413-48d2-8936-07b8a6d76067, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:17,957][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1648620344-1635500322#7999, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,018][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1533274302-1386116225#8000, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8551bd4d-1a24-4da2-8f0a-87626e496eb7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,022][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1884288875-224923753#8001, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,092][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:849715767-1386116225#8002, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3a607caf-582e-49cb-a1cb-7a236b75a0ec, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,096][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1984404165-2042421193#8003, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,167][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:882537423-1386116225#8004, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f327d6fb-e241-4c6f-ae14-0d7c79722b7b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,170][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:724687729-1634401632#8005, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,236][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2117547027-1386116225#8010, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=77871a4d-a6c6-41be-a1d6-579d919f5292, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,241][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:433333265-1016831497#8011, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,302][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:179107079-1386116225#8012, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=daa95c61-20ff-4486-a143-96d70ea744f9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,306][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1300025325-1966120703#8013, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,345][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:356203910-2018698987#8014, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,374][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1408916907-1386116225#8015, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=67db3ff7-920a-464c-857a-4d4af18c9717, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,377][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:575469133-1859594383#8016, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,438][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:31325696-1386116225#8017, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a59297ee-6cc3-421c-8f47-b65466c1d33a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,440][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:4975765-1173396559#8018, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,485][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:314763374-189403711#8019, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:18,497][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:313804590-1386116225#8026, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6a095b60-f14c-4354-8cc8-26f7e049e204, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,499][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1625066673-1754531074#8027, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:18,503][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2088212102-596107993#8030, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,535][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:212041759-833697188#8043, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:18,556][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1658064898-1391044161#8045, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,601][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:308992316-250048642#8047, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:18,621][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1282487644--52387744#8052, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:00:18,623][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1396001085-1386116225#8053, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=14cb8280-31d1-424f-a94f-feaf05f865b2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,626][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:391301470-579127382#8054, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,653][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1738199695-513737696#8055, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:520495444-457477274#8057, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2201.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2201, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,677][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1648310573-1562401196#8058, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:18,709][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:787903564-1386116225#8063, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8186409b-2b5a-4f72-922c-09765ef04230, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,712][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:253882908-348935300#8064, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,814][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1274970760-1386116225#8065, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ef6635ec-2da3-4ac6-a6ca-9b17daef68f3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,819][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1454889903-1443258999#8066, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:18,930][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:538469447-1386116225#8067, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c8d14388-f922-4d70-95c9-6d5566531032, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:18,937][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:533551118-2010088187#8068, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,022][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:306140079-1386116225#8069, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a5fb990c-9982-4476-a3b6-2fba7a767f95, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,027][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1902524403-77470969#8070, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,119][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:265129675-1386116225#8071, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ec6267e9-c55a-4fb0-9dee-7ed14b8610cc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,124][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1736902326-656305178#8072, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,195][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1393808852-1386116225#8077, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d4840028-d2ba-464d-9f29-0ae431268901, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,199][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:818651819-1873195186#8078, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,262][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:999063520-1386116225#8079, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=30e29a5a-91f0-485d-96d8-6c55986346a1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,265][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1987883056-458201774#8080, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,338][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1094093397-1386116225#8081, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=15d752b5-4684-4887-b488-a89bdc58fcfd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,341][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:421371628-175325391#8082, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,403][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1829646789-1386116225#8083, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1b17b519-7fd9-4896-abf8-77559b2f4a60, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,412][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:404711955-1837133058#8084, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,484][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:783966601-705157611#8085, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:19,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2103786821-1386116225#8086, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=881d6822-41f6-4cfb-830a-35b29b42fee7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,497][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1635363637-39127803#8087, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,597][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1817415630-1386116225#8088, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2ae330eb-bcca-4567-8a74-23ebafbb8b81, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,601][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:948443156-344210483#8089, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,632][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1051520650--689251507#8090, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=407.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=407, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,688][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1316043630-1386116225#8092, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=904cdfe9-aadf-47ac-91f3-4281e829c0de, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,691][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:910283276-51447123#8093, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,756][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1519416069-1386116225#8094, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=555e1f7e-5751-4871-b885-1053678a31dc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,761][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:494766450-622131555#8095, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,843][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:774134543-1386116225#8096, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c8452b79-00fe-4abd-a0f2-22cc14ba2a8a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,847][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2004159893-103951376#8097, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,906][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:74388052-144694773#8098, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:19,910][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1465479382-1386116225#8099, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1a882ebe-08e9-48a9-b2c7-69f999245c03, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,913][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1083999361-1016976244#8100, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:19,972][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1251725671-1386116225#8101, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=159ae890-05e6-4f43-9a65-aa006ff67f2a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:19,975][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1457047330-1917118964#8102, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,039][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:546341563-1386116225#8103, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a5955470-ff32-4d4b-a94b-8dff1a60caaf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,042][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:873758503-619011920#8104, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,103][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1899694449-1386116225#8105, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=509bb66b-593e-4639-a3d9-7b1367a2f943, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,107][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1427822775-1122003060#8106, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,172][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1282519207-1386116225#8107, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bee817bc-9e95-4538-88c4-d41844a7b719, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,175][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1705527513-1718938555#8108, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,247][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:655793353-1386116225#8109, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=17b52aea-8e29-4fdb-9332-9e3a26f83a48, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1713628164-1097504409#8110, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,315][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:164924-1386116225#8111, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f16ee9b7-bed3-4a8b-ae95-1f9c3eb8850e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,319][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:325165089-1788573069#8112, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,380][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2136012825-1386116225#8113, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4dd342fe-316d-440b-867f-4975645fe971, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,383][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1801957547-1972991310#8114, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,439][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1142899053-1386116225#8115, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2dbd3dc4-d76f-4572-8607-a36461aabcf4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,443][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1014491591-1791226890#8116, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,505][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1422843673-1386116225#8117, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ab0d325b-7cd5-42ec-a552-181a851ab6c6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,507][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1785002180-1767775646#8118, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,566][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:482924315-1386116225#8119, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e707ee72-d45b-44eb-92bf-d2fe02de886e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,569][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1046275468-1941149787#8120, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,629][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1788397918-1386116225#8121, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cc850deb-32d3-4808-8924-5bc2d7b2e563, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,632][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:808626969-1771788310#8122, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,708][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:101020734-1386116225#8123, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c1bc95f9-8dd4-4323-ad54-71a833cb3082, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,712][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:721133465-255103932#8124, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,778][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1012674980-1386116225#8125, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3dc3e8a2-74d1-491b-a7c5-4a323d0071c7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,781][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:299173525-1730430049#8126, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,847][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1285984842-1386116225#8127, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4257d503-4091-4b5c-b13a-f440eac5f744, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,850][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:287988587-686954101#8128, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:20,933][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1840273478-1386116225#8129, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c5575351-10d2-47ff-bbcf-7dd4cc7b6c89, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:20,939][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:368878456-1447973807#8130, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,014][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1857529517-1386116225#8131, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c8eb6c4c-5f7b-47a6-a718-9fa02e7da9ca, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,019][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:19571029-1899832683#8132, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,047][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1439351752-102470930#8133, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,099][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1383050381-1386116225#8135, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=810ea7c9-47b8-460f-ae11-ecd538471798, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,102][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1247927766-1228313553#8136, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,173][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:333393120-1386116225#8137, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e3dad649-d96a-4804-ace5-4c6fc0b5cac8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,176][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1014751698-2016416998#8138, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,248][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:90548266-1386116225#8139, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=de8c58ae-b74f-43ee-8625-e9bc15f7d58a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,252][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1951307593-1556239634#8140, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,331][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:172062652-1386116225#8141, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c0e261cf-12bb-468d-a306-9d12396d50ba, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,334][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:256717478-255396057#8142, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,399][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1092462313-1386116225#8143, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f5d8a524-c74a-4497-aa50-dfc491eb1ed4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,404][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1080083937-643696457#8144, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,463][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1642511515-1386116225#8145, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1a00f755-7f3d-4c5c-8203-331b30d2f03a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,466][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1298162848-199880480#8146, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,489][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1306407032-1958664100#8147, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:21,506][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1472006185-208332729#8152, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:21,540][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1566299483-1386116225#8157, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2387569e-c080-410e-90d4-bf006fedb36f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,547][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:160282639-1199999226#8158, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,628][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:64155589-1386116225#8159, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=de0e4c79-bee4-43d5-9db7-a2d429fbf135, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:10490857-1678347826#8160, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,703][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:389749521-1386116225#8161, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=96b7aff4-82c4-4267-b37a-bbe5854d5ada, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,706][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:50553588-62653990#8162, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,786][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:736915581-1386116225#8163, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ccf4870b-1db8-49f2-a9b8-49803b92fd3f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,788][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1681921410-2085412668#8164, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,869][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:530742181-1386116225#8165, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eca81c6e-4f7e-453a-92be-b22198f4345a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,876][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1459986356-856521939#8166, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:21,957][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:690151601-1386116225#8167, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c0341793-edfe-4f5c-b1ab-250f66e78782, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:21,960][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:634505571-1582438994#8168, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,034][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:107024047-1386116225#8169, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1367bb42-0867-40d4-856e-1eeaffc5df37, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,038][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:947405242-331943175#8170, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,105][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1560741286-1386116225#8171, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8d45e029-fefb-4e5e-aa24-48bfc7a09470, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,108][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1394437343-697467543#8172, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,172][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1919419287-1386116225#8173, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=606c83a5-e7ef-4ed2-ba0c-832bc5a4fbbb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,176][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:388432457-803536870#8174, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,248][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:308233911-1386116225#8175, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4cbdad7a-f90b-4d6b-b5df-bea9641fc937, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,252][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:546933712-251912384#8176, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,323][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:118502665-1386116225#8177, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8e9631b1-b609-4a48-b2bc-8bad5ad99715, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,326][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1871880610-54096011#8178, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,394][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:321684940-1386116225#8179, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=22115242-04a1-475b-959d-d98bda492562, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,397][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:353522397-1878490732#8180, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,462][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:858225718-1386116225#8181, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5954ab49-40ed-4bd8-9c4a-ae1a08bfa965, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,469][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1536653167-765050293#8182, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,547][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:261573970-1386116225#8183, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=615d8d1f-dd0a-4fd7-9dd1-51a87ab45a52, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,551][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:131683930-1737848257#8184, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,632][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:117512339-1386116225#8185, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1bc8d33a-40e0-4de0-b122-5042cd3b35e5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,636][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:852044028-2138035065#8186, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,714][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:865638952-1386116225#8187, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bec908e5-4931-43a5-a433-a8fdac34a6bf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,718][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1020447048-1202161894#8188, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,797][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1179811696-1386116225#8191, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4e10fbad-548c-4a8e-8f48-8f1c5597625d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,800][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:829224008-459207588#8192, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,859][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1615177873-1386116225#8193, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=099377b7-93ad-4934-a5fa-41985cc2dd57, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,862][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:901374486-1671532125#8194, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,919][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:261001822-1386116225#8195, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8e55e190-0051-4b4a-89d8-af13b2577a90, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,922][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1111663134-949047570#8196, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:22,990][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1462625083-1386116225#8197, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=10d4c963-4f54-4ecc-b30a-494252282111, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:22,993][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:751474658-2077196855#8198, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,065][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1231308189-1386116225#8199, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3fc4b5e5-cb68-42d9-b35f-5f3789a84e97, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,069][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1902658481-166051833#8200, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,134][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:247220936-1386116225#8201, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=52263d6e-571d-4b23-b438-bae1d3148fa7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,136][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1704963631-1457069286#8202, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,193][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1919384499-1386116225#8203, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f1bf19c3-d5af-42bd-9596-bb8a802af250, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,196][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:509707581-102219272#8204, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,262][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:414694400-1386116225#8205, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0f96ace7-bd1e-42d1-b7a9-6c62b464c622, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,267][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1371858502-1134483758#8206, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,328][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2017646763-1386116225#8207, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4fb4124b-fe45-432a-a997-8426402aeca0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,331][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1571826719-732956473#8208, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,392][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:517139656-1386116225#8209, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3bb502b7-96f3-4844-90d2-d81fda277d1d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,396][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1891366969-750252773#8210, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,467][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:118858117-1386116225#8211, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=36773708-61f9-4b77-9884-baa7cb47054c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,475][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:245934339-561902303#8212, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,542][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:843975887-410884746#8213, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,547][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1398196279-1386116225#8215, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=80390831-727d-4f93-9630-2d0ee0c97110, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,551][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:494089096-1595501725#8216, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,625][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:725877822-1386116225#8217, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=486867ac-7296-4d1f-8c34-f42a06a17376, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,628][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1312192017-1247671084#8218, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1588855678-1386116225#8219, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=061e7cec-9686-4cb2-a731-7910ea170ffd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,697][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1431996770-681704230#8220, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,755][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:230730125-1386116225#8221, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=21566ad9-abc7-40cc-8c16-66913fccd54f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,758][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1930552504-1921085985#8222, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1440665500-1386116225#8223, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=057f5901-2ee4-41e3-969f-587ae8a3fd04, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,839][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1574602859-563249996#8224, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,901][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1492909349-1386116225#8225, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=643922d4-e58c-435e-9aa3-3b9e6c01ea8d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,904][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2080009097-1919561037#8226, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:23,973][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1205291183-1386116225#8227, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d053a8f0-c40a-44ae-8fb4-de10ef29b760, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:23,976][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1086490533-1758202391#8228, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,036][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1273975302-1386116225#8229, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=29f35715-c5d9-42ac-99cc-4df9790b16b5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,039][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:914418148-1647034174#8230, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,106][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1782554078-1386116225#8231, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d67927ba-673f-466a-966e-ffcbef935158, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,113][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1542561277-1779404974#8232, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,182][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1440874654-1386116225#8233, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b3854c7b-85e5-4013-836b-2ac7445ab9e2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,185][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1126545041-351065469#8234, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,263][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:40938926-1386116225#8235, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=07fc0d8f-1e86-4f89-892d-01074f97bc43, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,266][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1205054350-690756827#8236, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,328][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1536783294-1386116225#8237, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b829c482-82fc-4fbb-b928-664a1fd429ac, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,331][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1552136382-106358651#8238, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,400][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1331030446-1386116225#8239, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d8362170-fd7d-416e-b89b-f86a5a312eaf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,403][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1606514553-516321911#8240, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,475][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:790242283-1386116225#8241, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1f35c883-04e0-4bf0-b3fa-5226e764f805, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,478][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1331869503-457992981#8242, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,489][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:560326947-1909907049#8243, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:24,500][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:347698153-1150077825#8246, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:24,513][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1298986887-989349120#8251, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:24,548][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:909436865-1386116225#8264, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=47897a94-61e8-4d02-972f-1d96d8022c66, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,554][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1213173655-307102446#8265, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,561][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:753650385-833697188#8268, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:24,621][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1789056881-2075733771#8270, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:24,639][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1329476828--53075430#8275, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,646][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:755308199--52387744#8277, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:00:24,668][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1373656361-1386116225#8278, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=697be6f3-8699-4159-b296-cf4cb1827a37, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,672][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1662253417-1563797763#8279, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,703][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1484799020-186278664#8280, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:24,747][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2008947635-1386116225#8285, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bacd2925-d014-4b31-922d-c05011f2311c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,751][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:120834550-1577841760#8286, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,828][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:106028682-1386116225#8287, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c2ac73d2-57cb-4828-ada2-d3e28b0237a4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,831][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:20266608-416299993#8288, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,884][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:427390039-1386116225#8289, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=40027152-9ffb-49b8-bf34-dee59ec4300a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,887][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:290737276-960116376#8290, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:24,925][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:539876501-1923407627#8291, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:24,957][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1092639375-1386116225#8292, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2a4d885a-5335-4352-8c72-53e2aa411fc6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:24,960][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:700852933-1740739100#8293, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,032][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:860444008-1386116225#8294, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2302e84c-0140-4910-9983-4ffce6300e13, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,036][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1895728556-1752570228#8295, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,108][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:63715092-1386116225#8296, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c9694837-15ce-4f53-9fdb-0e5cb0e65c8d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,112][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2052575248-2113992979#8297, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,195][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:644215326-1386116225#8298, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2bc43ee7-211f-4df6-82ee-48803a9ad6e0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,200][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1156777297-6326927#8299, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,269][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2043749361-1386116225#8300, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7a171e36-e0de-46bd-9fa5-4872082e3f02, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,273][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1890442199-749244702#8301, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,370][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:681071350-1386116225#8302, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e007f971-f2bd-4a82-a0ee-46ec7277c509, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,373][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1487286975-1179334943#8303, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,441][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:771977385-1386116225#8304, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1a2559e6-d823-4b29-894d-610b11605f65, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,444][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1155963005-758938004#8305, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,511][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:849362669-1386116225#8306, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a4c604fb-23d7-458d-9690-4a27bfee21f5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,514][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:118720040-2009519047#8307, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,573][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:972612722-1386116225#8308, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=984e8eba-7193-42c3-9a26-adacee1eacd8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,576][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:178053878-287639371#8309, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,638][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1354540611-1386116225#8310, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c2ee68b0-b666-438b-ab87-6785e8d9f259, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,641][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:781779794-1140838181#8311, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,702][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2052687694-1386116225#8312, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6c866006-301d-4f6e-94d2-806edfe938d4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,705][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1331865848-696758741#8313, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,767][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:347919655-1386116225#8314, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ef096b03-fb49-4688-b276-e39382b33d6a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,771][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:585716489-2023099076#8315, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,837][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1821050138-1386116225#8316, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=860fd3ed-53be-4c5e-9e91-d97c77e549f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,841][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:518840385-1987418510#8317, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:25,936][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1056800174-1386116225#8318, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a33d9072-2959-45d7-973f-bdf8d9afb6ec, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:25,940][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:183110846-1945967434#8319, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,022][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:698238290-1386116225#8320, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0892a69c-cf75-427e-b42f-3c2d8723993b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,026][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2086358466-638464267#8321, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,049][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1035094475-1717383162#8322, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,096][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1087261614-1386116225#8324, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=784db84a-63fd-45b8-92c6-d508e9bbf4aa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,101][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:396344533-952914940#8325, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,179][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:929143264-1386116225#8326, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6e694d0c-60c7-4a42-9042-380444530cf3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,183][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:88094617-1876118256#8327, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:895133509-1386116225#8328, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=65e5d213-90a8-4cad-8ea3-5eb41bcffa91, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,254][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:248481431-179803176#8329, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,314][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2143738692-1386116225#8330, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d1af1060-d5d0-4ddc-9c18-a75d96b8f405, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,318][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:533080950-1842347303#8331, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,378][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1534014050-1386116225#8332, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c1decb85-922e-4188-b03c-a77f8ded662d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,382][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:314232496-1015663114#8333, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,466][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:784154233-1386116225#8334, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b54486cf-ccc8-443b-bcfe-e96310d8eabd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,473][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:216266222-1223193996#8335, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,548][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:985870081-1386116225#8336, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a87afb66-2731-4356-98eb-1cda197d6b3d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,552][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2110427350-1855280644#8337, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,625][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1700399695-1386116225#8338, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cd32d653-a50c-4b6f-9b1d-58a58fe8dec1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,628][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1187154626-1873280748#8339, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,702][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:726052970-1386116225#8340, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=df5ad653-6fbc-414c-92e2-9119488e7dde, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,705][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:511430463-1279115944#8341, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,781][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:482153821-1386116225#8342, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a3a2310d-806f-4ac5-8604-95c582e3d24c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,784][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:40252224-1118045700#8343, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,843][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1622062202-1386116225#8344, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c6bc3131-f6b2-4b50-ae6c-69bd06285428, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,846][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:340607695-662867765#8345, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,909][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:776545215-1386116225#8346, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fa8f36d4-aed2-4189-8580-a9174cf21b04, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,912][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:495057508-2044642098#8347, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:26,971][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1271042622-1386116225#8348, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=86686b00-4ae5-4d1b-9227-ca99b1588f88, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:26,974][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:753996834-1051826434#8349, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,044][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:838404789-1386116225#8350, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=40fd5226-911e-4af6-8545-f659f79aa82a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,048][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1861561814-1241605166#8351, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,134][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2026544613-1386116225#8352, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=28061590-d880-4af7-b01f-33be20b37f21, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,140][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:18844907-1187224195#8353, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,304][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:128104033-1386116225#8354, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=79a21746-2cb3-41dd-8d8a-2573ba4e3387, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,309][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:724252357-1445896095#8355, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,394][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:216203355-1386116225#8356, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=02f40eb0-498e-49ff-b9be-148854598889, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,398][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:509656600-1821326863#8357, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,461][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1316980326-1386116225#8358, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5ae82161-7647-4065-9343-17549508132b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,465][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1510651434-1098990349#8359, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,494][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:348151045-1573763141#8360, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:27,508][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2011922627-1931281403#8365, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:27,539][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1424712308-1386116225#8372, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d74eb228-f4a3-4806-8d96-2ab42484ef1b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,543][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1712685625-1763824439#8373, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,607][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:577993781-1386116225#8374, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c6dbbcf8-5631-4751-9ea7-0f072e518aad, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,611][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:755253965-1741297950#8375, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,671][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:9815739-1386116225#8376, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a299b13c-9c4c-4c86-aa13-5f71eb8e7c5e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,674][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:968790088-908308376#8377, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,737][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:18240171-1386116225#8378, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ee7456d2-1d14-49d3-abaf-a82f141b450e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,741][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:798555180-1651049799#8379, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,801][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1235040765-1386116225#8382, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=924e32d7-868a-4266-b15b-a9f80a136aea, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,803][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2049812847-305943450#8383, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,868][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:945110951-1386116225#8384, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f4808406-b295-4712-a844-1c17d5136f28, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,871][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:405252993-265686843#8385, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:27,942][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2131111384-1386116225#8386, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=980a1e3a-76c2-4e12-9a39-c13b73e58119, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:27,945][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1858047384-1264670829#8387, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,015][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1953577453-1386116225#8388, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=52222b47-98f8-4b90-a863-e8d4081a70cd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,018][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:978825814-672541641#8389, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,089][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1769319574-1386116225#8390, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7c729295-6377-46d2-a2be-aa63be946707, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,093][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:339103236-326409174#8391, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,176][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:170242578-1386116225#8392, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6a691e7-20fe-4a3e-9828-5dadf4df04e1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,180][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1324400348-1754304360#8393, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,256][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1603081095-1386116225#8394, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6ad7267d-d423-4b82-9eba-853c5a818afb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,259][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2015334214-861067463#8395, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,334][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1607858698-1386116225#8396, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7e7b6cd5-6d43-4ee1-be06-7c3c13371464, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,337][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1760807772-1813126331#8397, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,395][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1227060510-1386116225#8398, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd945f63-2ab5-4e5d-8ae2-1da20f9e01de, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,398][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:970380186-1334396631#8399, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,454][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:855800921-1386116225#8400, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=db756114-6330-4d62-9a38-54426a81ffcc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,457][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1641772194-1855860992#8401, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,526][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1797553658-1386116225#8402, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=138a2fcf-f999-4388-83ef-b72dd3a31d70, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,530][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1273242739-1897936841#8403, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,548][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1856573148-640312670#8404, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,595][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1283922516-1386116225#8406, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b86bf6c3-2d5b-47d0-93c4-82cee529dcec, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,602][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1021964914-437310685#8407, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,646][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1868911188-457482326#8408, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,651][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1758309166-1952918742#8410, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2204.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2204, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,667][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:827664380-1386116225#8411, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=425d21ef-c632-4e52-9c3b-be1d1273a277, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,670][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:263022480-171714960#8412, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,732][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1198568861-1386116225#8413, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2ef980e3-5ed6-44bf-a991-70ad05228444, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,735][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1593970760-1006071263#8414, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,801][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1349301144-1386116225#8415, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=11738010-5e8f-4e62-8f81-17a03200a692, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,804][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:309471317-1572731395#8416, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,866][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1571094014-1386116225#8417, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8fa0d01e-1a1e-4e15-8819-89a3d4b560d4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,869][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1759602081-1800591464#8418, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:28,936][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1502431971-1386116225#8419, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=722930d0-b8b7-454c-bd9a-34d4d9008051, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:28,939][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:591136545-1083421322#8420, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,002][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1031775080-1386116225#8421, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=726f7cca-99aa-42fa-8df0-507e2b1ee107, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,005][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:244726902-1305487242#8422, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,077][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:277535576-1386116225#8423, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7ac60809-6717-4768-abe0-aa5955a638b7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,080][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1353600706-1877257517#8424, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,148][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:591670060-1386116225#8425, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e958fc44-3112-4746-8604-ce65e56a067e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,151][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1708291079-1202257441#8426, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,221][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:233811516-1386116225#8427, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4df79548-b5d6-422b-beed-e3a6b29b26be, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,223][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:259062246-2046088771#8428, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,293][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2033022634-1386116225#8429, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5b06602e-6ca9-4ae6-9a57-00bc7901abac, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,298][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:163822077-24436458#8430, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,393][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1592608329-1386116225#8431, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c915c756-80c6-406f-9d15-28ca955a3412, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,398][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1290269464-1484764968#8432, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,498][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2145104195-1386116225#8433, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2cd8a85a-ceda-4d27-b191-6b17c29382e2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,502][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1261465599-951855794#8434, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,515][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1194950938-827153533#8435, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:29,606][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:501156986-1386116225#8436, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=55d73e30-5684-4c5c-9d11-595bad7ffba0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,609][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1059911467-2007709862#8437, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,682][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:773547355-1386116225#8438, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=98facf55-d1d5-4538-aaa6-8aef3876c708, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,686][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1262616638-319759314#8439, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,757][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1028605725-1386116225#8440, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a432e9d4-181e-4008-ab06-3e5b60ce4162, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,761][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1217121362-320038541#8441, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,846][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2036909710-1386116225#8442, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bf54fd07-e7dd-4afc-8e84-cbf2217aa390, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,851][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1045958929-673686484#8443, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,922][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:545824595-1386116225#8444, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6b0e3005-842d-4e5d-9c3c-965b52d3d3fa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,925][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:535523706-1640315663#8445, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:29,954][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1953045984-276784697#8446, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:29,995][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1415292397-1386116225#8447, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1620cab2-5638-4488-9750-7ad3e27929c8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:29,998][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:479129898-540309830#8448, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,065][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1267830231-1386116225#8449, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f1a6a1cd-a8e8-43b8-b741-937bb826d273, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,068][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1114389893-696288067#8450, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,129][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:712847740-1386116225#8451, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f99c52ba-e8ca-4507-bbd0-4b7d56660730, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,133][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1833303761-1315337961#8452, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,200][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1674673917-1386116225#8453, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4d040d4b-6422-4dee-9857-3cec7fabcb8d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,202][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:551834922-1653965969#8454, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,270][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:523855636-1386116225#8455, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=12db19a2-cb19-4201-bf29-1ce33ac586c2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,274][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2012730520-1966637641#8456, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,333][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:994521459-1386116225#8457, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4cf61be5-7717-4ccc-b579-00393b80fdcd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,336][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1871896776-646490806#8458, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,410][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:387141348-1386116225#8459, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f5de4eeb-13d8-4009-a3f0-27cfc4a5ba1f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,413][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:358431196-1831931679#8460, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,481][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:244307221-1386116225#8461, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f815c7da-9128-46b0-a906-b56b5add01de, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,484][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:65457742-2139722807#8462, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:643938343-1283150512#8463, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:30,511][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1757267359-1841163942#8470, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:30,578][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:447030574-1386116225#8483, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=41644ba9-ff03-4b79-a9bd-acd0b52101c9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,582][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1785887762-1599294380#8484, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,586][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1118583129-833697188#8487, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:30,646][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1816675421-1610059951#8489, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=1569.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=1569, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:30,658][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:639428015-1386116225#8492, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6150a69a-d6b3-43d7-a1ff-e44f3bae0d5e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1675085035-1301487200#8493, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,700][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:771923349-944560955#8497, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=396.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=396, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,700][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1028693562--52387744#8496, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:00:30,701][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1878144103-845104622#8499, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/endpoint:user-artifact-manifest:endpoint-manifest-v1, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,751][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1735011803-1386116225#8501, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b8fc9dcb-4cc6-4b7c-8177-a0d53cf01a17, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,755][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1572792982-596749386#8502, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,784][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1806302691-1562055096#8503, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=1305.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=1305, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:30,851][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2010884823-1386116225#8508, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fbd04203-f082-49e5-9c3c-852143ccb5c9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,855][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1493609370-2112095164#8509, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:30,952][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2029476713-1386116225#8510, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cb3f489b-edfd-4320-a028-28e5f877543a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:30,956][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1389415346-1055322121#8511, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:31,036][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1673723274-1386116225#8512, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=492f4a7f-7a1e-47b4-9c25-a9b1d3cee8b4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:31,039][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:556584584-1978993732#8513, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:31,059][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2082131019-138428655#8514, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:31,099][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:952617967-1386116225#8516, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=57092632-f66c-43e5-86e1-4e923cb158d1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:31,102][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:847950624-31017487#8517, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:31,214][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:979128803-1386116225#8518, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=35ccc59f-e57e-45c5-88a9-6aec90fda0a5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:31,224][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1019379188-1538710271#8519, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:31,454][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1744640822-1386116225#8520, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c72eb379-183a-4416-b213-e823a09f69df, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:31,500][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:175199252-971189796#8521, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:31,651][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:247149818-1386116225#8522, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=38b9b1ad-4a83-48a8-bd71-f16f173fd045, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:31,655][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:17873584-29462386#8523, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:31,743][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:569574240-1386116225#8524, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=30ce60f9-6b18-43b7-9327-81f923522fc4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:31,748][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2144249151-1184842149#8525, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:31,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2003592393-1386116225#8526, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1c0e6464-f073-47c3-a877-bdc0a0559c06, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:31,839][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1298072927-1202890390#8527, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:31,914][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2065450412-1386116225#8528, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=82d572ba-62d1-4d92-b48b-4410cbc24595, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:31,917][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1875000362-1518516592#8529, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:31,990][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:139862688-1386116225#8530, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1e769994-c445-40bd-9eaa-4598a61335f0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:31,994][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:293484323-1864596042#8531, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,070][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:539297767-1386116225#8532, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=91df530a-4cee-4cfb-b82d-7d8bcef0aab7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,072][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:434070113-2046335318#8533, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,152][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:226315529-1386116225#8534, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=053031f0-42ee-4dfe-8711-c9ea5319816a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,156][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:91187582-1740754904#8535, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,234][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1515116639-1386116225#8536, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=52b4c31a-e60b-4dbf-8ae2-22d3918b9fa5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,237][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1035784986-1139173706#8537, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,313][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:707842529-1386116225#8538, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4da54c84-3384-479f-a77d-e08572cade2b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,316][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:101742808-1575964419#8539, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,383][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:758370765-1386116225#8540, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dd6aa57e-807b-47cb-bc78-00f437883217, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,387][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:18920019-83086359#8541, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,448][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:591600861-1386116225#8542, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7874e1bc-47c3-472b-97b4-b976df76a443, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,451][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:250766173-904668074#8543, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,509][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1304365778-1386116225#8544, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3588026c-2866-4f94-a6fc-20a2c105196a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,512][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1281962363-2033535934#8545, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,575][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:844722385-1386116225#8546, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6d054a8c-c141-4606-be8c-e50d0a8e914b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,579][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1332565833-1250579766#8547, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,659][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:431066978-1386116225#8548, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8a8c1b8f-b413-43d9-a74d-99b9bef55787, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,668][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1620552573-1164279609#8549, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,729][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1566482758-1386116225#8550, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d8e67fbf-011e-47f3-b232-f0f34c24b73c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,733][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1208086288-361785646#8551, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,798][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2078425106-1386116225#8554, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aa25939d-dd44-435b-be07-ffd88349b1bf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,801][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1402903225-346068661#8555, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,859][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:49234966-1386116225#8556, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c17cc9db-84d3-4ba0-a2ed-7b4075aac202, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,861][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1810134665-1284010526#8557, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,924][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1544372228-1386116225#8558, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ef0abb06-1b2e-4c04-8355-5835eb56a81e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,928][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:616198247-1814174279#8559, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:32,995][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1672846687-1386116225#8560, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aaa93f55-ab62-458c-b056-96411b7937eb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:32,999][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1435434061-574654419#8561, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1582055934-1386116225#8562, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=529167d1-6983-41a3-ae0d-6abd1d3e54a2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,070][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:299659277-865245935#8563, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,138][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:357231953-1386116225#8564, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8e3c5dc0-1733-4024-97cc-b9275bc6ea11, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,142][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:691346871-1528519812#8565, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,233][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2088366314-1386116225#8566, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7a0f76f9-c91e-4618-9a7d-3d870d8b7c7a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,237][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1042004561-1061339264#8567, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,317][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1044141200-1386116225#8568, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=47368182-61fa-4362-9d6a-e19685c83891, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,321][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:225512733-1851516880#8569, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,392][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1203006555-1386116225#8570, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b3f56084-345f-43a1-a564-4fad2f3996a4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,395][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:468728041-518834031#8571, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,476][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:792249861-1386116225#8572, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5b6ba087-db13-4407-bef4-a13303355c7b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,479][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1267380493-1361571813#8573, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,494][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:842667141-1932810028#8574, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:33,506][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:255851771-505369838#8579, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:33,548][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:696814865-1089040075#8584, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,554][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1584774402-1386116225#8586, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fe640d53-9d29-466b-b59f-28b765434489, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,559][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:809712110-1573833458#8587, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1448769718-1386116225#8588, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6458395f-5d21-4763-a806-62cbf3fed947, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,635][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:632574674-210863043#8589, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,733][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:665010681-1386116225#8590, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a241f60d-c801-4b40-9759-4b112c06d9f5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,738][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:574161523-622655012#8591, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,830][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:622065375-1386116225#8592, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5197c299-c9e4-4b22-8982-84609c266485, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,834][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:402839309-1916957924#8593, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,924][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:816648542-1386116225#8594, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dee38285-03f2-4b42-babf-4fb068c2323d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,927][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:179481754-75933822#8595, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:33,986][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1703020894-1386116225#8596, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cde0f43d-a453-47b0-b875-e4dcf215817a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:33,989][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1031652177-573865496#8597, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,054][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:323020664-1386116225#8598, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=37457877-e7a3-4ae8-ac95-4ddf51835801, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:34,060][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1727906999-902427762#8599, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,137][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:881629293-1386116225#8600, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e8d7b6ce-dac6-4a67-b06e-eb6986be8b94, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:34,141][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:543408803-682848868#8601, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,203][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1378052452-1386116225#8602, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=516b0f0f-235b-4232-acd6-6ba70e60326b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:34,206][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:37543101-1022652547#8603, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,268][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:266802475-1386116225#8604, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=915b5bd5-eb55-4f6d-845d-ad01b6dcd3f0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:34,272][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1187390970-586928299#8605, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,333][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1033161759-1386116225#8606, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d2cccf58-8b45-4bc2-ac5c-4c9f05c695f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:34,338][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:174966987-2104739209#8607, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,440][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:32586756-1386116225#8608, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ae46c702-2ca7-4d0f-a1a0-5905d00b9510, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:34,443][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:446622737-2119259161#8609, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,510][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:502110679-1386116225#8610, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=42eff15f-9230-4c6b-b74a-6ff237f599f3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:34,514][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:368351090-2028408761#8611, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,535][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1271353424-894672236#8612, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:34,586][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:207781152-1386116225#8613, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cb7a689b-0e90-4fa2-8537-df3a08c731ce, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:34,590][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2100325978-1288583561#8614, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,694][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:211053934-1386116225#8615, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=332d6742-5156-477d-ae40-36e970a228bd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:34,699][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:327191201-1841067061#8616, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,780][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1350765178-1386116225#8617, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9172cf96-9f22-4217-917d-589017fba7bc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:34,784][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2136203801-1754381008#8618, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,880][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1711437355-1386116225#8619, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6a8f5ccc-7381-438e-9e58-d3590aaa3bd0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:34,883][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:781869131-1312365739#8620, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:34,967][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:731605126-1591599344#8621, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:35,010][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:590891864-1386116225#8622, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=072094b8-0687-4a33-9d1f-b4716d54090f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,013][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:627234768-1439515810#8623, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:35,148][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1688659083-1386116225#8624, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6464968-2a7d-4ec1-8813-d2f60fb29041, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,151][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:86311372-910858991#8625, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:35,227][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:152903888-1386116225#8626, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2e839b84-89d3-4309-b9c7-03b2d730ddf0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,229][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1523322820-2001362480#8627, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:35,306][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:364195796-1386116225#8628, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=23e0024d-46fc-4bbc-bc1e-1cdc0f433a19, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,308][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1976473106-1338377536#8629, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:35,371][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1784183126-1386116225#8630, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=01723700-b7f9-47b6-9051-b00f6b023945, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,386][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1445929030-1464881815#8631, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:35,446][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:675524920-1386116225#8632, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5e6e6070-cabb-463f-b3d7-30ad4e834156, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,448][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:33095599-788189894#8633, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:35,519][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2079058276-1386116225#8634, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3506740a-9aa8-401c-9661-ecb6cb239e5d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,524][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1318346064-148358826#8635, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:35,617][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1891850644-1386116225#8636, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ba5ad118-9f6c-4446-944b-b45a08c7cc8a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,621][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1413951009-945133348#8637, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:35,698][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:243397650-1386116225#8638, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dadc8f42-1818-4729-a4ad-74305a0f6cd7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,701][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1684280239-163516196#8639, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:35,794][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:491210112-1386116225#8640, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=04f94970-a1a6-4e59-9d7b-2784b4533203, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,798][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:484905822-1482326534#8641, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:35,862][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:703422470-1386116225#8642, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6848c336-3007-403b-bd7a-ce410066dd15, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,867][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:237063166-712557703#8643, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:35,953][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:649996668-1386116225#8644, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ead7b8e1-c152-4af6-af85-2950d27f945f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:35,957][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1678872829-1626036538#8645, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:36,036][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:215737692-1386116225#8646, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d9dac32e-cb4f-420e-9d55-f3e85377b19e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:36,041][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1543096434-864497032#8647, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:36,082][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:153063499-1522361649#8648, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:36,147][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1335004236-1386116225#8650, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b999266a-8d16-4cc5-ac17-9aae01fa2f03, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:36,152][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1173558107-815484518#8651, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:36,250][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:29237673-1386116225#8652, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=006475c1-2fb8-484c-b6a4-3d3fb05b315f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:36,254][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1511341374-128029932#8653, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:36,331][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1831014912-1386116225#8654, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dd4e4c0c-5c62-47f8-ac7c-f79ff4df724c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:36,334][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:492885348-1852827451#8655, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:36,405][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1709312238-1386116225#8656, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=29ebb704-ff26-4947-865c-b66dfa2217ec, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:36,409][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:279225664-192186821#8657, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:36,494][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:448000431-1386116225#8658, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6110fa10-89f7-4d8c-9763-0e60cb00d748, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:36,498][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2028364603-174033914#8659, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:36,505][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1868771183-1515719014#8662, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:36,525][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:868065634-1949396984#8667, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:36,640][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1968015689-1386116225#8682, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=87b1cb11-f064-488c-adce-02fd433835fb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:36,641][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:388885584-833697188#8683, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:36,646][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1895178438-110649824#8685, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:36,708][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:479284076-84905590#8686, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:36,730][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1144946177--53075430#8691, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:36,733][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:23887879--52387744#8693, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:00:36,742][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:389050733-1386116225#8694, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7a4a0162-b0fd-4a9d-a90d-6831b3236207, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:36,745][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1857368515-1506579554#8695, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:36,796][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1011174372-678100504#8696, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:36,857][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1863772671-1386116225#8701, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0c951d89-000e-477a-9c08-80efbe4ce71c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:36,861][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1380192251-1153987644#8702, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:36,967][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:992856195-1386116225#8703, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a98e7c7f-3fbc-405b-8f12-8ccbfa772fef, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:36,970][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1672255240-300250961#8704, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:37,061][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:369854661-1386116225#8705, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=31c21970-12e4-4b03-935e-d1242e48e18f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:37,083][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1136075607-1151658238#8706, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:37,165][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2126594244-1386116225#8707, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=13b009cf-f739-47a7-a77b-da2cb7c32640, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:37,168][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:877044345-1309770301#8708, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:37,237][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:764506137-1386116225#8709, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c1b639bd-e861-4b96-b65a-5e64abcb777a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:37,241][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1495454223-1492575800#8710, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:37,327][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:439654257-1386116225#8711, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e25954fc-f161-462a-8174-1032391a8922, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:37,331][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1015233942-1937650339#8712, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:37,428][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:483839442-1386116225#8713, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9c21c1f3-991b-406a-96fb-03019ab1c09e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:37,433][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:585584166-120432737#8714, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:37,555][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:96762125-1386116225#8715, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c1e3eede-7807-4d11-bf07-7c341b344d31, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:37,559][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:794201146-936931720#8716, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:37,640][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1566353842-1386116225#8717, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e3d9720d-9ecf-420c-aa1d-38ccc2dcc20f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:37,643][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2079768325-1624951581#8718, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:37,705][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:351974079-1386116225#8719, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fec62df1-b8f4-40ad-ae00-3638ac854dbe, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:37,708][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:743671979-1645417651#8720, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:37,813][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1420278223-1386116225#8723, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c14a7f16-9ee5-4cee-9f41-5cf348d174b7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:37,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:361338542-623858276#8724, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:37,907][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1600355582-1386116225#8725, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aae0e68a-4a64-4710-bb38-9762ee7cc46e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:37,912][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:912514844-1862665112#8726, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,014][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:811974766-1386116225#8727, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=888cf7bd-8cf8-49fe-9c98-f47bd17a51c6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,019][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1957027344-1544971431#8728, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,124][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:55813758-1386116225#8729, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d3ecdf6c-7b1a-426e-a3be-c2ed98a5d507, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,127][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:497770698-1193568305#8730, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,203][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:678960942-1386116225#8731, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9e321da4-8669-4838-8b4b-71b96a82db23, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,207][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:906378249-1894627123#8732, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,285][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:342633727-1386116225#8733, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b9a5a4e4-2d8e-4302-bc68-022c799d118d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,290][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2089140275-2078563806#8734, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,363][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1714239934-1386116225#8735, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a1b20284-c0a8-4805-9169-18bb2a40178c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,366][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:324266576-1099248721#8736, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,426][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:408328978-1386116225#8737, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=784122a6-608d-4c0a-8f9d-4a176b5e94b0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,428][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:398041455-456448162#8738, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,493][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1937457193-1386116225#8739, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cef36ef7-f31f-489a-9c94-91291602c5f6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,496][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1608108895-87141138#8740, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,549][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:947753694-296679408#8741, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,573][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:12338601-1386116225#8743, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8cb2bd29-d1e9-4c68-98b6-70b911bdc1ef, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,577][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:140314519-1558351648#8744, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,643][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:982901307-1386116225#8745, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0ac8cbf2-f593-4e2a-886b-42847d214a06, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,645][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1483110861-954707177#8746, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,648][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1882500954-1696927581#8748, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,665][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:250001957-199483380#8749, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2201.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2201, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,716][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1593376685-1386116225#8750, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dbc5ec38-c376-49dd-8c22-6facdc32e903, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,719][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:334126280-686222082#8751, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,807][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1030725013-1386116225#8752, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0c4365b7-860d-4216-9c07-917a8b8836d5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,811][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:611518466-1706957912#8753, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,865][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2057258262-1386116225#8754, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4da1a7b1-f972-406a-8d94-1bbd7a4b5d5e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,868][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:996015333-131256468#8755, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:38,933][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:312164586-1386116225#8756, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3deb3fa6-9a40-4dc9-b9eb-9ff368de5ef7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:38,936][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:313266266-1187150910#8757, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,000][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1468350978-1386116225#8758, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=25631fa4-47c1-4e71-94ce-617feee2624a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,003][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:525456392-1829579128#8759, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,065][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:956013419-1386116225#8760, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cff5d1d5-18b1-432d-979e-b7d614e47fc5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1167285028-1416832522#8761, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,128][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1353814805-1386116225#8762, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=367a69fa-5645-45a2-988f-8b8fc1bebf2e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,131][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:880114347-1801477498#8763, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,195][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:644773226-1386116225#8764, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b87a6c12-9e79-4edc-8d62-2ff228da2347, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,198][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2057008009-1696923219#8765, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,254][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:205976576-1386116225#8766, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9fe88d2c-a815-498f-bb12-f6f5df1a88a0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,257][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1498809799-2029007455#8767, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,329][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:979672436-1386116225#8768, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7f289b52-1511-4f2c-9ec2-28d54c76217d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,333][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:20551884-1755897105#8769, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,400][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:296970385-1386116225#8770, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=41662899-dce6-4d61-9031-ecf57910d77a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,404][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:262326510-1116786222#8771, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,458][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1820246840-1386116225#8772, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d5a9dc0a-a7db-4d35-84d4-03fa46794bc7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,461][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1719916998-2139064384#8773, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,499][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:260015610-1757926366#8774, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:39,519][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:312500909-756693931#8779, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:39,536][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1004197951-556252031#8782, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,553][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1619235566-360199902#8785, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:39,567][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1494354804-1386116225#8786, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=729913c0-d549-4def-a633-380ebe6b5946, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,570][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1521264030-928683476#8787, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,651][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:725236739-1386116225#8788, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ca84250e-64f0-4047-843b-79df1dcb755d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,654][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1648024507-1568997943#8789, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,714][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1041418342-1386116225#8790, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=829efc6d-1c8a-4ca7-8860-f19952b828d7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,719][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1144140163-1885457853#8791, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,795][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:92335420-1386116225#8792, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8957f97a-0d52-400a-bee6-42ae30e98ca2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,800][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:762922002-2022884887#8793, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,867][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:115404957-1386116225#8794, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=de74c588-4fbc-4042-9d3e-33ddfdb3c3e3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,870][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:67830896-1664457015#8795, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,932][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:234445112-1386116225#8796, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a09139b0-9f47-4a3f-b928-9ed1d2f7e463, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,935][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:203174914-1357420917#8797, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:39,990][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:526081662-1479337012#8798, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:39,994][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:897410839-1386116225#8799, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=86ba0fc1-0d77-45da-98d1-809c3e085d94, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:39,998][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:566916092-1680302357#8800, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,061][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1536505057-1386116225#8801, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7a265e9a-b26f-4cba-ac51-04e24b32b956, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,064][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:84845915-2007593877#8802, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,133][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:676961212-1386116225#8803, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cf537f1f-e0dc-4865-8240-37a47a06a5d6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,136][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1520009322-709743135#8804, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,201][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:373565720-1386116225#8805, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8b1c7ac8-f023-4815-92dc-229c1c94d705, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,204][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1923400727-1688768761#8806, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,280][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:548498265-1386116225#8807, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4d5defe4-8018-45c6-b693-57b95d62eddc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,284][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:386570942-1129996340#8808, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,357][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1666519038-1386116225#8809, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cbcbd483-517b-48b5-8ec4-e66bc3d1d965, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,364][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1217747822-185202600#8810, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,425][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:457342269-1386116225#8811, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0ee4be27-ea14-465e-a77c-2de51b0e7381, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,427][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1344518996-839894037#8812, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,490][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1988088139-1386116225#8813, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=21af0152-83ba-468a-b94c-c0572274ad44, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,493][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2120016172-862461096#8814, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,557][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2139838908-1386116225#8815, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f85991ec-9ad4-4ba9-a6b9-9a835ec3a613, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,561][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2012625551-1857741020#8816, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,624][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:491011327-1386116225#8817, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=53911069-2a66-4432-8fd1-b4fbd5847d5d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,628][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:950517842-2118367115#8818, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,714][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1195771039-1386116225#8823, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=87401cf1-3aab-4926-a466-85e524652ad5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,718][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2077850444-2113573173#8824, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,785][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:510037742-1386116225#8825, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7f105344-8eeb-4e7e-95c1-edd960207b54, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,788][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1777537857-1505760808#8826, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,850][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1880770332-1386116225#8827, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=899d11be-53ba-4b14-8815-bad0472e9442, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,853][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1512154639-725212945#8828, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,914][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1922170120-1386116225#8829, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=44e41e74-2d61-4eb3-9580-5c7c81def38f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:40,917][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1343317729-123183922#8830, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:40,998][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1651717534-1386116225#8831, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3233ce3e-5f42-4a69-98fe-e143e24afbfb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,002][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:527953253-1149941252#8832, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,051][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2122236820-98223616#8833, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,079][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1017618523-1386116225#8835, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e4bfaddf-cc5a-483e-a68f-1fc4dfc36cdf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,083][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1864276745-2048249638#8836, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,166][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:599305038-1386116225#8837, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=24e1daf0-8a78-4708-989d-b2133ae89b57, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,171][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:580674074-960590739#8838, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1845094242-1386116225#8839, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9a5891e4-3e8e-4b08-940b-f6d24327b0e8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,256][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:192791368-1244720271#8840, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,352][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2027934641-1386116225#8841, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6038556b-f131-41c4-8da3-5edd473e56e3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,356][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1514137919-1060964019#8842, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,427][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1923400015-1386116225#8843, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=abb28b3e-c2a2-4153-96a3-12998893b38e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,430][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1952499441-1370730323#8844, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,501][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:107750216-1386116225#8845, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aaed4b3f-55f8-4dec-8fff-d05d267d61db, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,504][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1377186931-540227470#8846, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,581][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1823923692-1386116225#8847, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=91991274-e945-4ef4-9781-0e5af730f8a0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,584][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:195548497-1752292858#8848, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,653][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1371998269-1386116225#8849, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1e2a883b-6a1f-4c50-90ea-e30a0922efd6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,656][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:197457492-1048360736#8850, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,721][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1485054744-1386116225#8851, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=34663fe3-d50b-4fa9-9886-5c27a9052b78, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,724][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:837504725-489781482#8852, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,796][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1177487835-1386116225#8853, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0f382b81-692a-4cd4-a053-aa1391e1cbba, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,800][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1070231269-1421607471#8854, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,881][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1121769082-1386116225#8855, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eb9e9bb4-aa01-471c-a9ef-9a47a01fab0a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,885][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2080603691-273844744#8856, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:41,941][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:608915287-1386116225#8857, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f21dd812-4d22-431e-a365-71c9e3331602, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:41,944][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:8866-1737881263#8858, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,003][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1670591135-1386116225#8859, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6969d7d2-82e9-4c62-8f3e-563db8894e71, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,007][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:501020749-482925670#8860, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,074][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1411412446-1386116225#8861, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3ef119ec-ddd5-447d-a4b1-4ae966a67dc3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,079][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:786277903-1413033225#8862, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,145][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:239661060-1386116225#8863, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9234a5a3-f89f-493b-a174-1771cd0b4ffc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,148][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1496436370-438302309#8864, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,228][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:122933578-1386116225#8865, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dec337cc-6183-4589-a26f-c57d5d09926e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,231][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1314052468-432065394#8866, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,310][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2081008369-1386116225#8867, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=804b1b33-9d14-4842-9820-d065600458da, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,312][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1707732411-1032327439#8868, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,373][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:579655319-1386116225#8869, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=47c94ee3-4929-4a3c-9505-a79de2a50465, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,376][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:325303829-963456503#8870, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,438][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1141920700-1386116225#8871, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d5513a92-c099-40d2-8e97-92285b41a5f9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,441][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:15474119-242325721#8872, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,500][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1826273235-706288462#8873, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:42,506][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1587744373-1386116225#8878, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8d101523-a7e4-4356-800c-d79e282f5eaa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,514][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:409480110-2013929281#8881, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,516][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1851523747-733676947#8882, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:42,562][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1901575994-833697188#8897, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:42,631][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2051008457-1386116225#8899, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=94cd7a96-8fb1-4eeb-81d0-c2cc32905621, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,633][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1009360477-1707468589#8900, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,699][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1302138051-1209645846#8901, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:42,705][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:942808894-1386116225#8906, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b5cb2757-b5b6-41ed-879c-a74252666fbd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,711][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1921285018-1465551389#8907, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,737][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1377721067--52387744#8908, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:00:42,795][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2063430777-729057303#8909, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:42,802][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:679343366-1386116225#8914, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c8cbbc1e-bec6-44fb-b066-c8f928dd9979, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,808][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:135539680-433834023#8917, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,880][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:383835963-1386116225#8918, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b0897924-5020-402a-8636-73303dbe3b26, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,883][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1366482212-2022746049#8919, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:42,954][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1062060548-1386116225#8920, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e79d8eb3-bc27-4fd4-b90e-4b852eef5c81, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:42,957][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:801430481-1746446576#8921, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,031][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:357282973-1386116225#8922, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d0ba8e8e-33a9-4e18-b05f-2fbf80559bdb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,035][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1145506258-1305757912#8923, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,115][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1621501626-1386116225#8924, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ae3f430f-35bf-43ce-8116-5b680302871f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,118][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:671189359-1416891428#8925, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,190][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:998837498-1386116225#8926, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b66b03b8-c084-47a7-9429-3ddca5f9e282, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,193][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1791721159-1311098880#8927, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,255][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:977594572-1386116225#8928, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=95d69660-8148-40a1-b0d9-8e19e08f70e7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,258][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1230622114-2018885384#8929, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,323][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:416292298-1386116225#8930, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=41d5ce0e-a419-41a8-bfbe-5b8717bd11b3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,327][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:89097364-50097474#8931, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,407][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1468280810-1386116225#8932, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e54e476e-72b0-4a9a-bc15-804aa2dff196, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,410][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1336039069-917508313#8933, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,482][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1464335664-1386116225#8934, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=305cef84-9452-437b-9fcd-16b1d4152e26, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,485][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:566915917-2088886103#8935, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,550][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1241595590-583529675#8936, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,554][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1357228997-1386116225#8938, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3933c98f-8f1e-4f8d-b28d-a60ff07c66ad, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,558][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:585936361-1641562236#8939, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,633][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2082767136-1386116225#8940, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f6181955-3156-457c-a2fc-608c261c2757, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,637][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:23242466-1176944834#8941, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1700701146-1386116225#8942, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=176e55ab-0660-41f8-9f95-4fe21e7dc416, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,697][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1034617808-703264561#8943, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,769][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1496977950-1386116225#8944, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=780328ec-6ce8-47e2-b1d3-1cedd1b03cc2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,772][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1240083088-750388734#8945, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,832][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1377250343-1386116225#8950, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7f81cc6d-a70a-4cb7-8822-8c771d9761bc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1530166937-1125278149#8951, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,917][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1065032108-1386116225#8956, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9974141e-3e15-4082-95ed-20067fd26a0d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,920][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1416002672-744358099#8957, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:43,988][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2081571028-1386116225#8958, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=761093e9-a4a8-47c2-8a1c-87a2fd03fb1d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:43,991][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:457412739-2090986087#8959, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:44,068][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:547694008-1386116225#8960, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0dc1fd4a-6aac-4f91-865d-3ab14be7dbaf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:44,071][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1323292056-1226806088#8961, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:44,141][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:983481054-1386116225#8962, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=80cc2930-cf6d-4d95-9b1c-514ea026c89d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:44,145][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:857723088-64794686#8963, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:44,212][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:921499358-1386116225#8964, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f052b0ec-ee7e-44d9-b9cf-b6cf69efacd3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:44,215][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2037117591-876553274#8965, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:44,301][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1376010179-1386116225#8966, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cc434eb3-c5ec-4971-9708-cbf99a68e664, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:44,305][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:51341659-626449639#8967, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:44,383][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1753555587-1386116225#8968, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7cb3b4b7-c02b-45a6-9021-59b5126a4636, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:44,387][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:453833335-1664157180#8969, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:44,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1888705689-1386116225#8970, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e736f5ce-98e6-405a-98fd-9b3c8f46f4ec, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:44,496][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:826538290-1302342183#8971, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:44,567][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:30694758-252907237#8972, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:44,580][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:643160202-1386116225#8973, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0b7d6781-4cc2-4352-86e9-e2c717eeece5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:44,583][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1288187725-1651295631#8974, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:44,657][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:785459959-1386116225#8977, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6421367b-5901-42b4-bec9-cf702c3a298e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:44,665][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:642266671-737658860#8978, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:44,739][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:800276384-1386116225#8979, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1cc3ee82-9854-458d-b43b-82e3d3aa0cc9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:44,745][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:143797811-1863092288#8980, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:44,819][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2052193002-1386116225#8981, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6b2dffb2-0e5d-4a2c-96d9-2263cfd1bd16, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:44,822][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1286177855-1431554095#8982, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:44,922][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1586893901-1386116225#8983, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4f783c6b-c83d-4179-96b1-095b51b31155, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:44,927][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:736441311-737006304#8984, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:45,001][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1622439170-242102565#8985, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:45,080][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:211259644-1386116225#8988, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=207c9417-48cc-4821-9e88-87cc0401272d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:45,096][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1235761500-175589646#8989, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:45,283][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1970251388-1386116225#8990, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5c4cb8d8-a737-403e-b1e3-ef8c4969ab05, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:45,298][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1171245149-1302686561#8991, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:45,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:108210920-1386116225#8994, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=618cdee0-11c8-4d81-9eed-e01262757318, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:45,391][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:18002-148185415#8995, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:45,483][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:580695519-1386116225#8996, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=98d611aa-93b8-4e26-87e1-9e755e506712, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:45,487][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:510254482-1503437261#8997, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:45,501][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1130247511-146901776#8998, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:45,511][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1495701894-1053707721#9003, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:45,587][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1539435135-1386116225#9008, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=616701a6-5e5c-4199-b195-e2ea494f26cb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:45,591][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1555098453-207955996#9009, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:45,669][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:818639508-1386116225#9010, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=295dca71-671a-4d01-bf3a-e45e66d79f1c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:45,672][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1678636256-1060917623#9011, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:45,737][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1482345884-1386116225#9012, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1b8695c4-7cbc-436a-985c-e6b9f852dd96, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:45,741][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1749576143-1509659459#9013, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:45,808][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1738768939-1386116225#9014, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d490403c-2f1e-4d26-abe1-c675425fd25a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:45,813][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1204972829-1008405782#9015, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:45,879][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:161406750-1386116225#9016, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=439535bf-2f27-41af-833b-b96876f3e562, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:45,882][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2141360953-734831445#9017, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:45,937][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1331394695-1386116225#9018, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e7294665-c482-4390-b46c-81215b0106f5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:45,940][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:809646173-1527930423#9019, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,002][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:353011723-1386116225#9020, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e3fdacb3-d8eb-4867-bd8a-d0317fb24047, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,006][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:16860525-547362240#9021, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,053][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1770656773-671192047#9022, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,071][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:983406662-1386116225#9024, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=41d2eeac-f37a-455a-ab01-de312531c55c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,073][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:505936401-967683475#9025, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,139][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1319418566-1386116225#9028, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fe07f9ca-1082-4272-ba60-fad7dacc6efd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,147][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:414012668-972800650#9029, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,226][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1844326675-1386116225#9030, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=016cefc2-4475-4743-b2fc-2322e9d1fc2b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,230][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:108516578-1955555940#9031, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,302][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:327617005-1386116225#9032, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fdbde355-f67a-4674-a481-4f21921aa78c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,305][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:259900455-924172782#9033, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,364][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:944132386-1386116225#9034, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7448d2d8-5283-47da-a8e2-9b3cb62155da, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,368][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:329641894-1922587913#9035, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,435][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1796990981-1386116225#9036, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a48d5546-15c0-4b30-87bd-3d736f7cf852, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,438][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1266800370-1169669917#9037, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,502][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2022130745-1386116225#9038, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=86a83bae-10f2-4040-83c0-491ca198dd03, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,505][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:220410391-1221612295#9039, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,565][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:812073559-1386116225#9040, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=27927c22-0b65-492c-ac21-d263f0576f8c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,569][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1912831726-1713654067#9041, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,624][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:749106843-1386116225#9044, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4b0c68fb-9234-4479-84c7-a6b181524e69, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,627][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:643431586-1338249865#9045, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,690][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:191739795-1386116225#9046, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=11e15d7f-2495-4e7e-a414-3868bbfd0b55, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:341838539-2109036553#9047, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,759][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:302669164-1386116225#9048, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4f695c3e-d15b-4cc9-935b-927c7d10e307, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,762][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:926790293-1998350371#9049, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,834][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1848933992-1386116225#9050, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ff7fff4b-834a-41b3-bb23-0b1de5271053, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,838][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1894355714-714751632#9051, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,913][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1054021264-1386116225#9052, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2a0353f2-d887-4084-9cbb-6723ee34efb6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,916][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1935271964-1335104758#9053, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:46,982][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:872537386-1386116225#9054, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fd46ef60-a897-4355-93d7-01068042a9ec, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:46,986][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:314583724-778381792#9055, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,075][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1672391804-1386116225#9056, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=89b9c6bf-07b3-4d71-98af-871de71a945e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,079][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1188551377-1183392320#9057, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,175][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:694398896-1386116225#9058, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=73cfb7eb-c5e4-41f5-8b46-b0ed38faa46b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,185][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1069034412-1195474904#9059, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,273][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1213587026-1386116225#9060, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=482cf003-ccba-48ca-91f1-d073ffb5cbdc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,277][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2088756935-40126383#9061, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,406][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1310152580-1386116225#9062, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3c64149a-ba17-45c8-a874-968c5afaec0a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,411][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:676771674-731657545#9063, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,476][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:191190698-1386116225#9064, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5ffe07b2-aeb3-41ea-8a5b-32d2e7589036, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,479][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2134547253-1657479151#9065, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,536][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:674715778-1386116225#9066, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8292be41-aa8f-4c4b-81eb-c27b2280a168, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,540][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:155622184-571361798#9067, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,618][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:402656719-1386116225#9068, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=638cebb0-0335-4a4f-ba68-9152e6020e3c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,622][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:182560005-927199402#9069, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,689][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1741537854-1386116225#9070, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=364aeb75-2cdf-410a-8016-8fdc4e6c076a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2134627709-2020970002#9071, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,752][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1344005910-1386116225#9074, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2c2dd809-c227-4cf8-bfb0-a0278b6b8daf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,755][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1506677529-2021631328#9075, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:749642083-1386116225#9078, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3c9ac0fc-3581-4b65-bfa4-88e54fcbc2be, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,821][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:595775671-175986949#9079, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,883][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:254589327-1386116225#9080, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=66e7eab9-7547-41f6-b3f3-ca430afaeea2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,886][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1456518320-1675805109#9081, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:47,954][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:53942717-1386116225#9082, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=749ea879-9d2d-4fe2-a443-5b02356a405c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:47,958][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1765615765-974873654#9083, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,021][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1325524393-1386116225#9084, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=96a10228-55d7-4946-a332-6b6b8c778bc4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,025][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1958803205-1949896840#9085, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,092][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:367194349-1386116225#9086, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=24fbd511-cedb-4bdc-b544-5427160a7f90, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,096][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1427006293-646303278#9087, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,153][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:444872486-1386116225#9088, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a6519268-88ee-4b26-bd7e-7798370a565e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,156][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:409192707-1045497233#9089, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:908941515-1386116225#9094, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a06ad04d-264d-4c86-8b87-886f9593910e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,256][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:220947503-193371992#9095, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,333][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:882257816--698386866#9096, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=855.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=855, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:48,345][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1036877364-1386116225#9098, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd489867-9850-42bf-bab2-b801903f127a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,356][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1635418694-925272154#9099, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,387][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:149274041-1578065487#9100, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,456][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1800576890-1386116225#9101, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2e20a822-0793-41af-bec1-791da424a73b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,459][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1756741138-1301860040#9102, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,503][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:606422117-36807186#9103, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:48,520][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1387529854-649471486#9110, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:48,535][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1774263314-1386116225#9120, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c5bc543b-1ba4-4de4-ab65-ff06deae3f3f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,538][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:370665247-1402445537#9124, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,554][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1558944085-833697188#9127, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:48,566][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1492317397-959595093#9129, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,615][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:271873395-2142994690#9131, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:48,636][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:815830652-1386116225#9136, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d247f229-62c4-46bf-b332-7d7098c545f2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,646][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:455822039--53075430#9137, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,648][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2061087387-137157704#9138, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,658][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:522355046-528716518#9140, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2203.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2203, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,659][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:687449831-1188684076#9141, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,680][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:671562540--52387744#9143, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:00:48,731][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1308324128-1315753691#9144, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:48,747][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:194448575-1386116225#9149, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d7eb9f13-68bc-4ba6-916a-d02479b11566, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,751][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:734496623-580830138#9150, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1060141255-1386116225#9151, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7e59c8de-5cd1-4712-bea1-795a58cf56c2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,820][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:880460984-482926330#9152, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,884][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2114777092-1386116225#9153, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=040a33af-45b0-4124-8243-5b22396cbadd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,888][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:195288819-1609850670#9154, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:48,956][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1866693298-1386116225#9155, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dfad59c8-522f-4e27-a29d-72a016a31962, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:48,959][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1036586860-1739340065#9156, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,054][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1552048401-1386116225#9157, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bde05fc4-e741-4be4-8f0c-970c30b25042, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,058][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1919756129-261954349#9158, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,139][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1623772166-1386116225#9159, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=80da32ac-bbbc-41de-acb0-d779913a7acc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,142][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2052769757-2084150406#9160, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,218][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2036178123-1386116225#9165, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0473abbc-a8bc-4bb1-9030-270b81b87312, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,223][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1744104015-5751279#9166, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,286][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:222293944-1386116225#9167, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=48a100c1-ec5d-43dd-981e-250f612cf158, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,289][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:748653079-485682862#9168, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,356][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1115332071-1386116225#9169, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=15816d5c-0fe9-42f9-a5ac-a4d7a62bb333, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,363][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1544870381-1660039993#9170, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,430][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:65716591-1386116225#9171, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c5994061-8b43-4de8-8c07-3a23b56e6fb3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,436][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:846058050-962714943#9172, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,504][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:367649104-1386116225#9173, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=be92cfe0-01f4-4947-807b-a9aa71803eb4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,508][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1128312911-811088101#9174, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,581][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1473596654-1386116225#9175, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a0c71e8f-531e-4fa4-bd6e-018b3160bc4e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,584][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1820005230-1539617787#9176, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,641][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:499167748--689251507#9177, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=407.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=407, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,658][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1941811325-1386116225#9179, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=13851c0b-9763-4413-81e4-d0f2e15e3daa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,660][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1814965833-1484435649#9180, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:49,666][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:643795806-1050103043#9181, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,735][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:646575836-1386116225#9182, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6e562e3d-8164-4bbb-a6c5-4c5a1fcaf71e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,738][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:592863486-774316269#9183, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,806][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2083549244-1386116225#9184, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d5054e36-5b02-4c77-a13a-817aae5309fe, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1962429196-1879306181#9185, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,866][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:33550696-1386116225#9186, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2716adbd-bc09-47e1-b000-d2cb9815f75a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,869][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1623335083-2004177942#9187, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:49,932][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:534746994-1386116225#9188, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5f23e5d3-d70f-481f-82a2-bc168ea36019, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:49,936][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1097060831-779187185#9189, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,003][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1988738371-1386116225#9190, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=86c00b98-7f7c-4210-9019-20434fd249f5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,009][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1598544364-38790134#9191, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,028][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:164074046-2001553119#9192, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:50,073][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:348793667-1386116225#9193, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5cd44845-9c5c-4425-be1c-83c35a5dca58, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,076][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1568487241-2025204204#9194, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,137][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:798162748-1386116225#9195, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9af95278-e073-41a1-821f-221c31363c89, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,141][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:425662383-1693587233#9196, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,200][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:443670162-1386116225#9197, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=637de92d-df36-41e5-bb23-1fcaf2d240cf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,204][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1350677385-431032636#9198, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,302][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:118954173-1386116225#9199, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1495a26c-7bb3-478d-a430-6fc4776dc9ef, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,307][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2024970186-210619618#9200, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,387][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1111669551-1386116225#9201, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f7342ed4-1da6-4dda-81a5-01a37872f680, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,390][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1372400385-1076113645#9202, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,473][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2047989572-1386116225#9203, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=38f98d27-b9fd-412a-9467-c15752b3c6f9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,476][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:751104996-1313656898#9204, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,562][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1845494746-1386116225#9205, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bcf62e82-a623-4556-921c-5c078c55ec76, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,566][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1994489769-388209344#9206, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,637][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1366109271-1386116225#9207, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e7d7ab7d-be89-45d1-a4fa-6cb89450aafd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,641][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:485687315-882183439#9208, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,721][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:102854294-1386116225#9209, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7cfa7b86-55ad-42bc-b731-3ba3d889c93e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,724][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1232351235-1107973751#9210, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,804][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1929261793-1386116225#9211, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=05ee606e-7c9f-42a4-9a41-1479f5461fcb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,807][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1182606781-1520215304#9212, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,876][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:479130039-1386116225#9213, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=881364d5-1a80-403e-a2be-4f154a0245c7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,880][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:847278704-581514169#9214, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:50,943][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:607742437-1386116225#9215, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=41453671-68e7-4f59-8c44-f6d97917d8e5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:50,946][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:223783580-845015771#9216, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:51,019][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:694285866-1386116225#9217, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=85a029ec-0cef-4285-9cd4-f9d817d47b52, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:51,023][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:67046674-1755370031#9218, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:51,055][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:713797853-1105461106#9219, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:51,136][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:788185322-1386116225#9221, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e3ed5aa8-d0a5-4af7-938c-84c30553763a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:51,139][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1352304621-223126551#9222, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:51,239][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:143438777-1386116225#9223, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=179396b6-a3c5-4da9-91a5-ab07da2fb425, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:51,244][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1990242097-410991200#9224, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:51,361][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2146891565-1386116225#9225, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3d379fe6-e68c-43fc-91f0-e0b451ce0433, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:51,372][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:484336493-1960444157#9226, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:51,504][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1042303120-2105674490#9227, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:51,536][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1723772531-843411584#9232, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:51,544][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:565223374-1386116225#9235, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a97c9630-b1d7-41fb-9ea0-3cf00f5212e8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:51,570][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1813031678-1769012921#9238, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:51,659][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1505093250-1386116225#9239, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=24686aa8-b2c0-4356-863c-ff4574ea4d9b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:51,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2049841362-1668720231#9240, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:51,734][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:877234038-1386116225#9241, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f46b4d8a-86bb-40ac-a9a3-6c20f41add79, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:51,739][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:181970861-1681069433#9242, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:51,802][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2085503309-1386116225#9243, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3a5ac6fe-3b84-48cf-8d5d-82bb6b27f021, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:51,806][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1859221925-952283014#9244, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:51,897][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1495662565-1386116225#9245, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c7c16172-0461-4da3-9dc0-59873bc2f33b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:51,901][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2011726588-193780133#9246, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:51,970][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:793940917-1386116225#9247, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6516d304-4de3-49f8-a49d-9af3443b3d76, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:51,974][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1853199648-1139190263#9248, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,039][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1473827614-1386116225#9249, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d1f359fe-3d94-4095-a0f5-c8baeea20431, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,042][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1890200597-495358548#9250, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,101][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1494393985-1386116225#9251, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c4713e81-51f5-4935-88eb-375de49a2d0e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,103][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1595463761-692546388#9252, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,161][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:792634001-1386116225#9253, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0c36b837-83e5-4534-a7f3-e62f4953bfde, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,164][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:145502445-563152798#9254, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,239][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:340411384-1386116225#9255, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=50dc9b05-8959-4ff4-b8b8-13c0ff61bb3c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,243][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:953325997-710756392#9256, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,305][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:85664332-1386116225#9257, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=23bf26ab-e56e-4217-931f-40dec8f922f9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,308][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1134505686-1780186316#9258, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,389][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1239529666-1386116225#9259, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0730da48-f5d0-4aad-81dc-a10edd1a329d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,394][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1185456083-116691750#9260, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,456][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:328311109-1386116225#9261, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=badca844-02ba-4b8c-be78-bce780174d81, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,458][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1017640112-233509620#9262, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,523][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1303689906-1386116225#9263, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1e1959c8-1eef-4092-89c4-491228a3c7e0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,526][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:255808157-762355199#9264, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,589][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1395765704-1386116225#9265, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd42c553-1073-48cb-a0e7-f8f931ed6c88, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,594][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:779218581-2077762845#9266, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,663][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:358549223-1386116225#9267, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=082b55fc-7338-4c12-817d-fbf91f3474a0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,666][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:243673921-665899019#9268, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,735][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:622809114-1386116225#9269, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5d0584f8-295f-446e-a31d-211fc8080869, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,738][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:102008622-1021229628#9270, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,804][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1293291297-1386116225#9272, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=104bfbd6-14c6-41ae-a26c-a9a7e46e36b4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,807][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:54346437-573372961#9274, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,870][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:334977210-1386116225#9275, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1800d2d9-a672-48b0-809f-f361c6194f9b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,873][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:10691773-1231380943#9276, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:52,931][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2121407517-1386116225#9277, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ecd67a78-364e-4e1b-88f1-640d1f761e8e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:52,934][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:547825996-1696543371#9278, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,007][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:565316681-1386116225#9279, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=11545bb7-fcce-435e-98e8-ce3919ab7df7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,010][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2080400473-503912719#9280, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,076][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1554014297-1386116225#9281, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=56089a75-8a81-45c4-af75-74798a78fe83, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,079][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:125681355-468340677#9282, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,148][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1975243263-1386116225#9283, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d88ce5e1-2c57-4b8f-8edc-f2530fe0fec2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,151][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1689768525-840986293#9284, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,246][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1968910705-1386116225#9285, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f68dea97-fc99-4334-8b53-38a6894f1e34, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,250][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1489049052-295501158#9286, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,320][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1589912076-1386116225#9287, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=16a096ee-709b-405b-9397-95002cff687c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,323][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1273192610-2047343277#9288, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,395][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2020115140-1386116225#9289, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d85706d2-28ed-4747-a391-28d0d1ef766d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,398][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:716734404-1547288632#9290, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,455][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1663255427-1386116225#9291, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=40b79824-80f1-4d97-9f43-ea91051a960c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,466][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:210718061-1234705603#9292, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,542][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1331635759-1386116225#9293, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fe073436-2d95-403a-a66c-52209323a60f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,547][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:540478571-840769621#9294, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,558][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:812951946-204895202#9295, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,635][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1970280124-1386116225#9297, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7fe5ca6c-d0cc-46e5-8f5d-240b612bbf26, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,639][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1141897054-1308132632#9298, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,736][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1126705251-1386116225#9299, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f4cd2975-f2cb-4ae3-bfd7-2948e55c0d1b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,741][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1437899928-250614259#9300, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,836][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1451614581-1386116225#9301, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cfe51a04-b408-4306-9fd5-70de523a8316, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,838][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:897495668-1017590150#9302, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:53,928][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1771254052-1386116225#9303, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1bfdfd52-e4b3-4571-b770-9bbcee7cc1a4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:53,932][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1300638422-1140311324#9304, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,014][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:480448348-1386116225#9305, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c4f60a73-6d6f-41a1-8397-6fcb940eb720, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,019][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:56238596-116660456#9306, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,081][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:516573083-1386116225#9307, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f5f1be03-66af-4cad-964d-566de202202b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,084][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2060997242-125482776#9308, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,160][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1740477310-1386116225#9309, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d053c2e2-4baf-4418-9337-65be3eb043d3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,163][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1432547313-1945607917#9310, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,244][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:391615676-1386116225#9311, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8370b0f2-9ed2-46db-912e-a271ecd1dea8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,247][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1266964843-420799860#9312, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,312][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:319467749-1386116225#9313, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2cb61eaa-cd03-4b2f-924d-4b483c9ffa94, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,315][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1540070592-335835554#9314, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,384][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1597037440-1386116225#9315, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6604991e-7234-4009-a1f3-a47e39c44449, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2099395912-1134774493#9316, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,450][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1419609467-1386116225#9317, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b44a1b6c-2e25-425e-b74c-a5aa9dff0870, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,453][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1141498357-1941373367#9318, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,504][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:872598562-1141099561#9319, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:54,517][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2135165216-1386116225#9324, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=90e96cc5-bf0a-4720-8ee1-678d98414364, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,523][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1060123462-706197912#9327, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,546][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:842935837-330205872#9328, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:54,588][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:575597115-833697188#9343, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:54,591][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:965678005-1386116225#9344, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=15467501-2864-46b4-a7de-5db9742aec20, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,595][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:651324853-1700786612#9346, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,660][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1614423007-1386116225#9347, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ccd2e49b-13f2-4c84-b60d-979229bea4bb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,672][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:37948581-1468608996#9348, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,683][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1479853310-124181457#9349, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:54,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1177903667--52387744#9354, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:00:54,704][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1644380517-2018234048#9355, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:54,749][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1660408648-2096089315#9356, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:00:54,770][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2007008753-1386116225#9361, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b20674d1-fc06-469c-81ca-9ef883481a5e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,773][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:77571698-570709487#9362, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,869][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:164474063-1386116225#9363, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=53f5a2b9-59c4-43d1-93f7-ef4daedc1e70, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,873][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2125840244-2082457745#9364, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:54,947][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:952387188-1386116225#9365, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a690e1bb-db39-4752-9c64-41c47a8a843b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:54,951][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:88759638-90295101#9366, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,016][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1435340709-1386116225#9367, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aa907d2f-cc48-4fa4-97e4-151d4f905f20, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,020][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:55762123-140629951#9368, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,041][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:644945896-1119779901#9369, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:55,093][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1490253304-1386116225#9370, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c2149ed4-4a23-463a-9283-f9047e5f2e19, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,097][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:980985603-1123709315#9371, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,178][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1637493216-1386116225#9372, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d5810644-ae72-4071-bf12-a50d3fc0a351, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,182][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1465604499-1359065320#9373, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,253][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1333439596-1386116225#9374, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=22e56224-848d-46c9-b7d9-814e8701188a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,256][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:851644128-1847164576#9375, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,336][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2115272234-1386116225#9376, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=66b8b0b7-eb41-4545-b1e4-95fc4a339571, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,341][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:852526066-1200005478#9377, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,438][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1034660005-1386116225#9378, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3b3f3b69-283f-48bb-a530-fe3299749047, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,443][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1830294392-1213303813#9379, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,593][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:223237081-1386116225#9380, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9d79f62f-6b35-47f2-861f-d90ad13d8d6c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,596][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2124958190-207047372#9381, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,673][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:390957008-1386116225#9382, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8e6970f7-f918-4409-82d1-66f9b8eeeb1a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,677][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:561581037-1695324771#9383, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,754][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1257590333-1386116225#9384, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=42c18df0-0db5-4972-90b1-36f7c390c0fb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,757][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1498892309-1868593369#9385, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,818][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:712714566-1386116225#9386, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5f589228-6525-44e7-aefc-0545a7f3599d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,821][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:112140475-124878223#9387, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,895][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1439983435-1386116225#9388, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a8a5f6ac-d3c7-425a-b9ff-c6d78fe6887b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,898][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1678084756-139432061#9389, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:55,956][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:786176294-1386116225#9390, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4c7cdcc0-af61-4b06-9e60-3106277c7866, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:55,960][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2006635319-2072728910#9391, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,034][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1320697446-1386116225#9392, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=57d09605-df2c-4879-9eb5-4f8c4f65c84d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,037][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:865214849-1202361334#9393, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,058][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1031409646-1264769333#9394, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,107][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:96074838-1386116225#9396, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a4918b9a-89db-4658-a1a1-7dcafbcec382, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,110][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:184400265-1729479239#9397, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,170][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:979567841-1386116225#9398, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a2bd3132-ae61-4863-8257-41364de95204, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,174][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1894913207-388287185#9399, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1584018824-1386116225#9400, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aed76f81-a422-4a78-ac81-12ce8af01b51, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,255][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2081191592-473662002#9401, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,320][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:762884390-1386116225#9402, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=24bcd4b4-0be5-449d-85b8-8093265f49fa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,324][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:582027124-1024953532#9403, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,396][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2113778494-1386116225#9404, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=94c72bee-a74a-401d-b2c3-086f81f96428, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,399][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:367320102-1069871945#9405, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,479][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1043855969-1386116225#9406, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8c590cfc-26dc-413b-bb4a-7b42f75b635a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,484][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:776198874-494221016#9407, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,567][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:95670404-1386116225#9408, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=795ab0ff-f4d6-4a8c-9780-59588b6eefd5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,570][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:81188513-879970795#9409, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,661][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:293451-1386116225#9410, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f913a820-81a9-4901-84f9-3d87a8bff4bd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,666][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:455650623-704185125#9411, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,755][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:124464096-1386116225#9412, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=52e13b43-dcee-4f37-840b-3303592ee791, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,758][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:605998948-2055331725#9413, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:461376467-1386116225#9414, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=807d3e1a-e2d9-479b-adc0-8b0b9f2ade7a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,838][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1164580712-400393550#9415, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,926][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1666469263-1386116225#9416, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=26720924-2259-4169-b83c-09db28e6a5eb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,930][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2022775973-1842709896#9417, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:56,990][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:383355529-1386116225#9418, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=df772680-6827-4616-9767-7d55e548cbb4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:56,993][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1470141928-665112461#9419, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,051][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1721558836-1386116225#9420, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dfdf1117-4bba-4591-b48e-7182e0620149, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,055][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1011590316-1872197912#9421, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,120][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1859001280-1386116225#9422, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=64105fdf-f8a0-46e9-925b-cb76b9688187, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,123][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1877668970-249906175#9423, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,208][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1525593218-1386116225#9424, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=911e8ecd-0cca-46fc-82e7-744f9412a22d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,211][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1155572740-2081509718#9425, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,281][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1481580432-1386116225#9426, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fd7cc98f-a049-4b65-847e-09a738608e31, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,284][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2007689919-917217482#9427, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,347][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1086770344-1386116225#9428, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c639ca83-d2d3-4a60-b923-44e795af1c54, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,350][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1624631487-1074403592#9429, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,413][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:726424627-1386116225#9430, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2b77e678-afb5-4fb7-969b-009486060352, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,415][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1570338430-306642274#9431, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,472][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:34890875-1386116225#9432, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fd619e2e-3a5b-4d28-b906-4a4bd33e0bda, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,475][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1274027470-1565304904#9433, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,505][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2003454337-1932706317#9434, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:57,526][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:858697962-2050227439#9439, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:00:57,545][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2026169198-1386116225#9444, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9fca41d8-f4bb-45d8-a3d6-cda151da1a78, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,547][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1506961329-310845224#9445, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,609][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:716307416-1386116225#9446, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c079777d-c7b5-49bf-9d64-4459948c5984, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,612][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1966191219-1058323595#9447, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,690][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:356551198-1386116225#9448, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eefb8ac2-5a54-40a0-963d-be0c073f4eb1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:814402645-1221607965#9449, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,754][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1379553128-1386116225#9450, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f9d9bbdd-8321-4f90-9ae3-fe408afe732c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,757][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1136344907-624278285#9451, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,818][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1874842908-1386116225#9454, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a5844642-d121-4311-8a78-3c184fa54e4d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,821][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1878955660-1965407583#9455, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,890][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1456512206-1386116225#9456, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a7326be8-f372-4291-9485-db5003d48f88, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,893][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:256529696-1075374254#9457, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:57,953][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1797142646-1386116225#9458, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eeb20b53-aad4-4ac1-8ec5-5183e142f285, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:57,956][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:964357943-1690590829#9459, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,024][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1671337923-1386116225#9460, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=06c3c46c-404a-432f-99d8-909ca6b08859, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,027][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2044317262-389317909#9461, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,087][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1363510952-1386116225#9462, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ac0278fb-1faf-4420-9c71-e091e23f5b0d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,091][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1190273996-1903046370#9463, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,162][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1119945207-1386116225#9464, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=98573141-cb5b-4837-b090-95d00c33649e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,165][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1070383041-1752635319#9465, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,240][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1760443749-1386116225#9466, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d91b28f8-e0c6-4300-bdaf-0d2032788dc8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,243][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:577394486-2013447693#9467, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,320][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:672709653-1386116225#9468, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c303ac8e-68f0-4c98-8fff-d7ef29a01ae1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,323][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:830777702-1101499271#9469, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:796598032-1386116225#9470, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4fbf9c33-3d3b-464d-87ea-9d8ebce330d8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,392][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1114564350-1446361164#9471, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,467][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:733211326-1386116225#9472, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e7761fa7-77af-420f-b9d0-5d6d99df43fe, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,470][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1548215111-1764472615#9473, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,531][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:312968598-1386116225#9474, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6ce1e1f9-aa97-4662-bc0a-05209df542ff, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,533][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:645229414-1170995508#9475, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,558][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1911417893-1606962363#9476, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,592][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1391145599-1386116225#9478, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8707b6da-02de-4c83-b68e-9e287e07e068, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,595][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1223910223-1457595056#9479, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,653][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1263599939-1076013724#9480, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,657][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:320356556-1386116225#9482, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ccff706f-acfb-41fb-97da-9c2916c4a4e6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,659][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1602563270-167780368#9483, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2193.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2193, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,660][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:427132557-143201487#9484, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,730][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:327371248-1386116225#9485, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fa192c43-fd0c-42a5-8d45-b0905e5b2a2a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,734][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1323715796-727127395#9486, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:583703616-1386116225#9487, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c92e3500-25bf-4ff7-9232-939366281672, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,812][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:514047850-1582100253#9488, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,909][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1423931331-1386116225#9489, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=11cfdfa3-7df5-4b6f-bfff-30b242a728b6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,913][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:581994732-836730324#9490, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:58,992][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1607785960-1386116225#9491, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5f9a8ea4-e153-4926-946b-551622f552df, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:58,995][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:839179370-185198896#9492, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,066][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1444008747-1386116225#9493, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a698c4c1-ff0d-453b-873c-c08ff8f9a424, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,068][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:760805205-1730350839#9494, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,124][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:550464821-1386116225#9495, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dcf05ebe-4a2d-4e1f-9eb0-992e7b22791e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,127][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1943042549-936660694#9496, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,198][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:781438317-1386116225#9497, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4a100bb6-b0fc-4f9d-bba9-107ff30cc899, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,201][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1566369062-586620108#9498, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,269][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1978575695-1386116225#9499, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bcbd5010-4ecd-4c0d-8715-3e531236e716, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,272][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1385748150-1194295501#9500, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,332][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1901559557-1386116225#9501, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d237358d-803a-4087-a067-df7e9ec8e911, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,335][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2103453915-1743473351#9502, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,402][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:435968578-1386116225#9503, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=23d57261-6746-42f7-91da-d767c289ec65, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,405][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1934761450-1212207781#9504, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,468][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:699663541-1386116225#9505, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=521304e1-0005-4c55-bb60-60c72627e3b9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,471][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:874122630-152749232#9506, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,538][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:414245657-1386116225#9507, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=902a3da0-3f51-478b-a20f-881ded0b54ea, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,542][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1782850868-618596131#9508, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,619][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:287886614-1386116225#9509, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b442ebe4-40cc-442e-847a-2993fa7abcdb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,623][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1078806531-523054078#9510, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,697][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:993157538-1386116225#9511, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3cc42ce0-4511-4024-aab8-bf932b76d095, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,701][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1410060458-137442071#9512, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,725][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:580284226-1410519605#9513, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:00:59,766][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1950559194-1386116225#9514, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a1ebca4e-d11a-4b37-a3bc-93a64489b3df, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,769][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1578555037-1597960131#9515, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,840][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1811199584-1386116225#9516, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c9f34085-42d9-4c45-b613-b53595e49478, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,843][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1321432857-209880974#9517, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,897][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1013159541-1386116225#9518, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5a5fb6ce-db97-415e-8944-557b0a6a099e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,900][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1682442941-1285595392#9519, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:00:59,964][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:343203626-1386116225#9520, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=55fdb884-ccdb-440f-8bc6-1d041bf66373, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:00:59,967][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:428764210-27797114#9521, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,031][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2038709125-1386116225#9522, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0b2cc8a1-3425-40e9-bd34-90f28c67b2c4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,034][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:621922576-1827718163#9523, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,058][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:932042083-394079705#9524, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:00,097][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:625098131-1386116225#9525, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=99fd6f22-80b1-4313-a411-27948d0df055, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,100][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:108386883-1177466625#9526, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,158][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2109895341-1386116225#9527, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5e729680-6c9b-4ad3-9d64-20f20c42d29d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,160][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1843183517-132529769#9528, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,218][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:608011963-1386116225#9529, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=76d6bea8-c624-4a3b-83cc-5126800a8c90, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,221][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:803818260-483157847#9530, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,283][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1515222016-1386116225#9531, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=476ef57a-8e77-4e50-9f98-28d79cb09124, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,286][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:342098692-583492247#9532, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,343][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1858761852-1386116225#9533, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=127d7477-e10f-4b06-876d-2c4bce157d48, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,346][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1192438832-941235546#9534, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,405][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:7549970-1386116225#9535, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=da31feed-5216-4b5b-86f5-048e56aa4a99, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,408][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:206718334-353914297#9536, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,468][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1219719929-1386116225#9537, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=55315a66-dbc6-49c3-8ff6-55c8458c615e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,471][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1261732230-590128503#9538, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,508][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:370521522-629135542#9539, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:00,533][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:368576823-1934228393#9546, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:00,535][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:295370651-1386116225#9548, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ad5901e9-ffa9-4ec8-bfa2-0ca75e48e347, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,543][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:121446954-999622103#9553, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,591][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1907493685-833697188#9563, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:00,640][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:751702080-1386116225#9565, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fadb9a22-2ee0-4d2f-9952-e4078ead54dc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,643][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1790384996-74795114#9566, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,658][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:889483887-1727265420#9567, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:01:00,694][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:550746094--53075430#9572, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,705][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:391995022--52387744#9573, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:01:00,725][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2084827044-1386116225#9575, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8665357b-ecdd-4d71-a924-d4ea83cf7d86, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,729][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1782738249-329047319#9576, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,763][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:776823885-1301319919#9577, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:01:00,800][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:885097521-1386116225#9582, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d960fc49-4f9a-4b5c-96b2-135b9d4f1b8e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,804][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1103135707-82507938#9583, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:00,908][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1303648056-1386116225#9584, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=81453fc2-6265-4541-8fee-d0f31f0449ff, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:00,912][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1978458803-821520782#9585, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,001][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1661712602-1386116225#9586, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d8bda61f-077a-4245-bf44-ab233923ce56, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,005][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:241921620-478211152#9587, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,060][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:389041495-700705283#9588, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,083][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2089760929-1386116225#9590, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=23b8e62d-ef76-4216-8293-ef3dcb565a60, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,086][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1735833868-1924733504#9591, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,153][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1142711782-1386116225#9592, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=96050233-1030-41f5-8276-764efd4b0a96, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,158][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1095960564-322926603#9593, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,219][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:695077686-1386116225#9594, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd7d5108-2dd5-4645-8009-27ca71eca5a7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,222][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:242903208-1464836660#9595, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,284][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1062762486-1386116225#9596, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2566b665-90f4-49cb-a07b-0cce4769bdc2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,286][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1714875536-1003808726#9597, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,353][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:295746714-1386116225#9598, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=85c17b57-b870-4759-9646-49739fc5860d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,355][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1832623775-1010347460#9599, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,421][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:541988802-1386116225#9600, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3fb92d68-e483-4b17-8605-8b478e5c787c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,426][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:874392381-90215495#9601, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,510][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2093961122-1386116225#9602, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=382ca8cd-cff1-43d4-ba53-416a83a72461, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,513][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:753903614-1777149597#9603, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,602][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1747862859-1386116225#9604, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b090895e-cc12-4d0c-8c0a-8e6eb2a74f10, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,609][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1847240115-1067139033#9605, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,758][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1061306233-1386116225#9606, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2561d775-622b-42bf-afc4-8c79ecd15b87, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,762][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:626799047-508571618#9607, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,854][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2018749958-1386116225#9608, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=77910294-387a-4f4e-8bae-dcbf46640db5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,857][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1447362434-315764356#9609, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:01,925][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:232930307-1386116225#9610, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7e06855e-f3b5-4351-a447-b0f31ed924ea, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:01,929][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1755611175-426629726#9611, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,006][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:440955385-1386116225#9612, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f96bec16-a482-4622-927c-34cadc4bb451, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,010][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:106316951-1254050242#9613, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,091][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1031259617-1386116225#9614, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=44fe19ab-7def-4a18-ae23-dc8cead568c2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,095][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1626246263-1672811846#9615, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,167][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1251329259-1386116225#9616, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f8fcc2b8-5c74-4ade-85b5-c05da37b65d8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,170][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1675948854-2004698633#9617, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,231][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1017737861-1386116225#9618, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cb94e0e0-a44b-4287-b741-c752c001f1e9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,234][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1493125991-482770445#9619, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,302][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:18235026-1386116225#9620, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d590897b-fb3e-4ce3-8203-8315a6b42e8f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,305][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1994148207-1423610016#9621, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,364][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2076420640-1386116225#9622, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=65a61ff2-a0e0-4352-bd4f-26b3ae3a0720, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,366][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1259469156-1595033176#9623, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,431][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1598915210-1386116225#9624, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e9d80028-396c-4775-8605-4449147e8de5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,436][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:810163225-52465992#9625, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,505][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2011356732-1386116225#9626, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a94fb524-1cbd-463b-babd-fa3fec7ad827, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,508][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:934175118-1466173878#9627, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,592][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1355376835-1386116225#9628, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=851e208b-5577-4bb7-9e89-ff4479e63c71, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,595][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:834363352-1977481840#9629, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,665][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:33776836-1386116225#9630, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5f02061c-3b17-44d8-ae8f-63ba76eaca0c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,669][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:420973367-1916359250#9631, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,746][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1756178463-1386116225#9632, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=831de21d-d1fd-4121-aa2d-5e3cddf856da, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,749][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1896961162-1425680300#9633, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1827230883-1386116225#9634, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bbc2fac0-81ce-4a92-b60a-2fd19d9d2c4c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,812][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:319376125-895699059#9635, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,884][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1929838786-1386116225#9638, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=deeb0e29-8459-41ae-b150-bb9c995c23d2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,886][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1002578909-1657129210#9639, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:02,942][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1305093121-1386116225#9640, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=77272b76-b761-4a3a-9ae8-c1debaad3768, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:02,947][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:100674666-745946044#9641, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,020][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1614329040-1386116225#9642, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=473b0e89-e159-4054-9fbc-f68c24ea70f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,023][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2085519098-2066382437#9643, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,101][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1721504103-1386116225#9644, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5ef93f5d-fa2c-4418-bd15-3edc1aa0c9b1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,104][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1135060816-1284618352#9645, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,179][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1692413649-1386116225#9646, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=00e272a1-cd33-45e0-a3c9-87344a5c2c2a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,183][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1659968515-470985258#9647, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,246][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1560396768-1386116225#9648, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ddd994d4-9a29-4aa4-98d2-480cf922cfc1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,248][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:955447351-1376381486#9649, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,329][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1539525055-1386116225#9650, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f20376fb-81de-45f6-a94e-e03f6abec15b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,333][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:143564772-655551874#9651, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,405][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:987184084-1386116225#9652, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f79cfd22-d2b0-475f-9440-7e83d6f9dd20, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,408][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2065171328-118866616#9653, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:928727333-1386116225#9654, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2398a5c0-1dc8-44cf-ba4a-b928178cc5de, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,495][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:886166913-258917528#9655, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,507][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1808893918-2084636542#9656, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:03,516][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2116930659-1961897301#9661, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:03,563][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:650627023-1266215003#9666, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,569][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1899970920-1386116225#9668, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=76373940-77cc-46e3-9ec9-a5ec13c1ab18, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,573][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:135004627-275596962#9669, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,654][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:484138692-1386116225#9670, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c5a2cb95-8650-4b98-a25b-9f1b9f52de4a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,657][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:392456246-2131681680#9671, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,764][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:95219845-1386116225#9672, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f6b09a40-f748-49a1-9f2f-3884d377e042, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,770][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1128768394-2010531340#9673, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,831][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2136746759-1386116225#9674, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1bef367b-1978-4e54-af8d-eca5bb9b0f9a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,837][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:488031409-1672707946#9675, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,904][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:647017270-1386116225#9676, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f55ac173-ce47-4c19-897b-45e178b63fb8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,906][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:948613360-328390684#9677, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:03,970][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1797434667-1386116225#9678, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=92031a04-7603-4980-a79a-82e281a69081, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:03,973][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1208527482-636001979#9679, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,030][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:549445666-1386116225#9680, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bddc90ab-25b6-42fa-817e-a98977c2f059, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,040][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1586121451-1406955578#9681, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,097][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:840970684-1386116225#9682, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=11743150-8615-4a54-bc1d-90f0593641aa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,100][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1841396010-1636875115#9683, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,156][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1375558339-1386116225#9684, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0c489e12-2407-4264-9855-0f971ad553e9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,160][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1650670737-67961310#9685, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,211][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1612888535-1386116225#9686, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ac8b9736-ab18-4a80-84c8-d13ec9ed6fdd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,216][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1530055762-542041105#9687, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,272][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1285624375-1386116225#9688, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3e9ac815-e0f2-425b-8164-2a0b48fa5320, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,275][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:968418933-1957031244#9689, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,333][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:597483941-1386116225#9690, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c93981c4-9370-4ee7-9e70-481161385681, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,336][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1734901579-421373597#9691, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,404][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1116333951-1386116225#9692, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ea11786a-5d63-4297-b250-9d05d62874b5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,406][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:115128130-585765621#9693, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,482][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1446474107-1386116225#9694, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7c46f69f-3480-4f2a-b43c-847394cef54d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,485][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1535690461-948771913#9695, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,539][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1250085911-1386116225#9696, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d36a550a-1fca-4eb1-9cd4-0fcd45fb181b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,542][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:659800213-980436108#9697, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,600][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1791981791-1386116225#9698, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1f6d38f8-d41f-49c5-8b93-b53d989f0f4f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,604][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:921826277-262130374#9699, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,667][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:930331549-1386116225#9700, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=05c3cbc8-9a79-467d-b787-ef2e62d30f4f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,670][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:652944428-524064207#9701, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,725][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1845802260-1386116225#9702, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c025f14d-3f5d-48c4-978f-d264a0711c35, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,728][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1149322266-993313506#9703, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,738][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1147709174-644439525#9704, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:04,785][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1088273062-1386116225#9705, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d8f4df18-1480-4f42-b153-b1f7c5400ba9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,789][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:188353468-1171603285#9706, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,841][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1483458271-1386116225#9707, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3ea9b1a6-29a6-4d4f-b17c-3c0425426328, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,844][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1976459262-779279632#9708, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,898][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1118924828-1386116225#9709, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=216b531c-cae8-4c27-831c-308c312080e0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,903][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1147804587-1130143095#9710, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:04,958][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2080260689-1386116225#9711, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f12f0b1c-d106-45b6-848b-fec1e5dde1f2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:04,962][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:839318690-639962634#9712, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,019][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:28674204-1386116225#9713, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=120c727d-4685-4f4f-a7fe-2defe7a72c00, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,022][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:139509297-230072437#9714, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,072][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:589148639-462424257#9715, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:05,079][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1967632422-1386116225#9716, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=22d0f31f-4e82-45a5-8766-9a7434b579ed, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,082][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1380533459-471106572#9717, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,137][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:123294031-1386116225#9718, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=86976157-e662-4ef0-b417-8f9ad24aa159, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,140][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1339492098-1461759479#9719, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,201][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1873573883-1386116225#9720, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d714ae70-5866-47c3-87dd-f6fcf4a57525, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,204][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:573739112-1437236283#9721, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,266][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:129449068-1386116225#9722, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=689424e0-c156-4036-a7c3-a437e98ae1a7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,270][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:187207886-1034940435#9723, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,325][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:996284473-1386116225#9724, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=47ab23f0-438c-4e10-9606-ec4988ac3e5c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,328][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:84412261-1256806890#9725, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,384][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:142870476-1386116225#9726, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5cf7547c-dcca-415c-8948-7e19c206a85c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,387][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:596403509-1719303438#9727, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,451][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1725713954-1386116225#9728, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=501f77cc-1ed8-45b1-bd2d-090e1684232c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,454][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1322164050-237760115#9729, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,512][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:999055541-1386116225#9730, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b34f95b0-a0b1-4c45-aa7e-3571979ea060, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,515][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1067812024-86751249#9731, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,577][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1419937457-1386116225#9732, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6e211b2-b40e-41d0-b0b1-31fd89fe2ea0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,582][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:217304408-526391354#9733, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,644][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1196675319-1386116225#9734, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b4d01562-c2b5-4537-8db7-907395263c6f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,647][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:126108066-353359111#9735, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,705][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:171032148-1386116225#9736, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c10eb500-a130-4700-a27c-502b2cc3620e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,708][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1396446093-1989198105#9737, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,759][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:492602657-1386116225#9738, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cc0ce182-77f1-49f5-99d1-95ac599293bd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,762][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:446192576-697008997#9739, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,814][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1508050756-1386116225#9740, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c725eb79-e410-4b4d-937a-90d472881680, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:544208084-2029124930#9741, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,873][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:227854738-1386116225#9742, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eda5ab2d-e442-4e68-89b2-85983b0bef5c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,876][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1275864643-320512578#9743, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,934][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1693865614-1386116225#9744, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c94849f8-caf2-4e24-82c0-caf1c4c3dc82, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,937][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1325779931-1654051398#9745, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:05,995][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:540968408-1386116225#9746, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=485eef65-c16d-46ab-aa58-2a3b562a8155, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:05,998][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:843470644-319014728#9747, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,061][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1642299890-1386116225#9748, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=58e56a4b-3456-48a7-876b-c7245bf8cf3c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,062][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:900192339-895014436#9749, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:909628319-1129896585#9751, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,123][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:955018816-1386116225#9752, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e1cf4acf-5259-4992-bb5a-9a46891326a6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,127][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1116117762-787247298#9753, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,193][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1165853886-1386116225#9754, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bfbfb9c6-9680-42f1-ab95-98477605a82c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,196][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1441672856-415837831#9755, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,245][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1309915394-1386116225#9756, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6fa06d1d-4fac-409a-a660-6b92137288d8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,248][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1098015384-1440444648#9757, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,307][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1024048914-1386116225#9758, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=de9ee349-c805-4bb4-be5c-ce2dda2a1e2c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,309][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1902452261-545893272#9759, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,369][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1716275357-1386116225#9760, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d6a578fe-b116-4bb8-b752-9d7d05bee405, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,372][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1916631987-2087655724#9761, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,428][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1329428638-1386116225#9762, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=734879a5-c549-4b34-b88c-9daef27b0cf5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,431][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:623031474-1209671397#9763, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,495][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:481629138-1386116225#9764, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=32f7ee87-22a4-4d15-b0eb-f3c9f7f8d02d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,500][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1365447862-1438765519#9765, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,521][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:748186202-564207216#9766, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:06,544][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1820940471-202296825#9773, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:06,563][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1815404153-1386116225#9786, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd153c41-e1e0-408d-802a-a493e7ced065, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,566][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:839165796-885243366#9787, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,604][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:304682793-833697188#9790, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:06,638][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1756916674-1386116225#9792, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6aba6baf-b175-4108-9625-e88e9a3daa2a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,641][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1756520848-2140853349#9793, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,673][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1453292285-215334744#9794, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:01:06,686][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2005987763--52387744#9799, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:01:06,711][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:855074942-1386116225#9800, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c8c1aad6-74c6-4215-9189-2216a8ce73b9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,714][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1577073368-1944451959#9801, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,742][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1391174956-570874795#9802, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:01:06,776][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:431682457-1386116225#9807, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=951004b6-010c-4eb4-b448-c8c730140d71, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,780][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2098193353-560828764#9808, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,842][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2097493090-1386116225#9809, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b59cbbce-c80c-4856-9566-72db6074c504, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,845][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:782275224-988794724#9810, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,903][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1348642714-1386116225#9811, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c20dbc74-f3f0-4c19-8e6d-10893875f09a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,907][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:956064347-1968628585#9812, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:06,964][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1499431280-1386116225#9813, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=066299ef-b4a9-4f04-9eb9-b4a0902f1e9f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:06,967][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1598593801-454622059#9814, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,025][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:389515257-1386116225#9815, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2b01d9ed-e5c1-4578-b138-427ac19a425f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,030][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1085123817-44188222#9816, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,088][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1128601433-1386116225#9817, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1f042501-1e82-4dfd-a48f-4c790e43237e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,093][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:430506416-1169584717#9818, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,153][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:106837724-1386116225#9819, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e53ececc-a119-45fa-9843-ad238d3ccb8b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,156][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1750160630-2029148272#9820, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,219][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:590308198-1386116225#9821, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1b6b38f2-425b-482c-9c9d-1d84c14c44fa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,222][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:696742495-1599428920#9822, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,282][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:135012533-1386116225#9823, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=29eab8c7-d0df-4e2f-9028-eadd12509910, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,285][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1027686592-1469759168#9824, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,334][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1670906162-1386116225#9825, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5f76feaa-b893-42ab-a8ce-522718f8107e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,337][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1159539686-812922596#9826, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,391][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:344404811-1386116225#9827, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ff0c37cc-e123-4ec1-a4bd-c04988460823, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,396][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:126105450-90895844#9828, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,462][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1290487534-1386116225#9829, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ca697a75-2849-4937-800a-a19fc6621f58, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,473][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:688172212-945192038#9830, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,534][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:629923406-1386116225#9831, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c750ad3c-9bb4-4368-9df7-109d2a9970a0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,537][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:516895585-1280843913#9832, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,603][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:112839260-1386116225#9833, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=476d54a1-8dc8-4a23-8134-ed7b9bfa0785, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,606][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1077232826-1267447190#9834, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,670][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:722058411-1386116225#9835, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1ea75661-37a0-40bb-b7a7-e72538012727, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,673][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:750310333-560587467#9836, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,747][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1027818258-1386116225#9837, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5e8c3ce7-3d4e-406a-917c-a3017361a04b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,751][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1267954376-1570920745#9838, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,838][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1187091290-1386116225#9841, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2c262c57-e082-4a3e-9851-5ebb220a8183, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,842][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:929909787-1509728135#9842, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,914][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:249711348-1386116225#9843, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b0736879-131f-4dd2-bf3a-98db5648e3cd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,919][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:153723714-1175308383#9844, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:07,972][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1760052071-1386116225#9845, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cc9d6a2e-6b0d-4fab-98ed-3d8c39e27d43, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:07,975][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:467486993-643886410#9846, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,043][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1335154363-1386116225#9847, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b8b016ac-3dfb-49ff-889a-9706113ef304, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,047][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1654094199-1248856650#9848, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,112][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:84268880-1386116225#9849, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=61bb81e2-b093-4498-abf2-6a3f03d50ea3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,115][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:991184852-448788289#9850, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,177][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:430737646-1386116225#9851, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9061ba2a-67ea-4f97-8a3a-3ef0a639d281, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,179][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:283231694-1971400044#9852, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,245][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:871695303-1386116225#9853, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5462a82b-d293-4624-a86a-761e6f51cd84, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,248][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1709620485-2086870239#9854, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,304][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1522350604-1386116225#9855, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e29ccad9-2b75-48cb-9e1b-96213aeb89b8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,306][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1647474984-505729615#9856, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,364][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1898563932-1386116225#9857, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ff0c687c-6a69-4373-812b-f370bd1eb668, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,367][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1316641307-706421487#9858, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,428][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:213894255-1386116225#9859, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d5562794-02e6-4688-a351-0b268145dd89, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,431][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1527899581-1663033914#9860, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,487][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:391054596-1386116225#9861, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=809ec6e1-c466-4f7c-98e5-4036ece370c9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,492][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2141832896-207003520#9862, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,555][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:605102267-1386116225#9863, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2303c779-6480-4a84-befd-c8de0f3f7ba3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,562][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1480507322-1152161973#9864, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,565][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:466452044-1763925478#9865, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,622][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:111874787-1386116225#9867, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e313d1b4-9ed8-41cf-8886-7585ea522007, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,625][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1963116838-1301344921#9868, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,656][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1618892798-1077346932#9869, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:589281453-1775338093#9871, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2195.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2195, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,679][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:731049589-1386116225#9872, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f3f2fc8e-e269-46db-a0a4-aed9705d08f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,682][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2072181006-56520872#9873, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,742][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1541266005-1386116225#9874, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=75b65854-1194-461b-947f-6b1aa592fe0a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,745][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1566206654-956123538#9875, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,802][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:677535909-1386116225#9876, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0edb7c36-a347-4c94-8800-029150f11bb0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,804][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1423674634-611347465#9877, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,861][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1988117312-1386116225#9878, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=add18bc5-c9b0-4d94-82a8-265e531e3bba, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,864][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:720502179-2022867126#9879, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,921][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1247668899-1386116225#9880, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7af3d395-4907-4bd2-8716-5ee0b3403672, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,924][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1890181491-1461635915#9881, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:08,974][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2137497295-1386116225#9882, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9a51016c-3635-4f9d-b17b-054eac8fbaf5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:08,981][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1915173102-509382956#9883, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:09,042][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1153154766-1386116225#9884, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5e65d4b8-0811-439b-97f1-b3ca16e08c8a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:09,045][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:557930989-10783261#9885, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:09,101][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:810909530-1386116225#9886, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bc419e8a-64a8-430a-ae50-e8a94f00f1ff, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:09,104][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1259287215-832573203#9887, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:09,163][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:368612097-1386116225#9888, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4ab736c6-d7dc-40f3-b500-ab44bf8c79e5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:09,166][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:436578043-1045767108#9889, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:09,242][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1445652119-1386116225#9890, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ce91a7a0-8106-4072-8d67-17b73e55c89d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:09,246][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:209581291-1024764640#9891, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:09,308][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1333686098-1386116225#9892, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=68ffdc53-2c82-4cfe-8cd6-5ead436393cb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:09,312][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:177332679-491632722#9893, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:09,384][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1422550600-1386116225#9894, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eeb94ee8-9b44-415f-b933-77cdb4cb5fbb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:09,389][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2129972668-1714367272#9895, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:09,524][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:434084310-1738522459#9896, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:09,538][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1745334813-1592594771#9901, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:09,588][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1048980780-175458068#9902, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:09,768][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1618247233-465395138#9907, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:10,076][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:91985739-1386116225#9908, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ac221965-aa3e-4382-88e0-94110b052ea6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:10,084][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:341703892-883971244#9909, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:10,102][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:73713453-953953292#9910, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:10,324][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1059321209-1386116225#9911, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=282d7815-eac6-4a82-9a36-b64a8d3ece32, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:10,346][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2004201997-114799212#9912, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:10,441][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1723595801-1386116225#9913, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dd7dee12-fe0d-481d-844b-4f285db84b2c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:10,444][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2107069758-1270115092#9914, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:10,530][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1145307724-1386116225#9915, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7531e498-401a-499e-94a0-3952e1dc0970, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:10,535][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:285953461-720685354#9916, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:10,613][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:488761988-1386116225#9917, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eeb8e282-08ed-4570-ad6a-b647b5d2572e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:10,616][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1837979631-84508033#9918, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:10,716][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1032412260-1386116225#9923, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4b4180c4-b51b-419f-8f16-6eccaea491c8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:10,721][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1319435888-1117111063#9924, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:10,805][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:74134776-1386116225#9925, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b75d0f40-43c5-4150-9218-066762b0f52d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:10,810][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1168168581-185290437#9926, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,047][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1624838235-1386116225#9927, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cfc7be75-2b3e-44cf-9ac6-c2b83cfc1448, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,054][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1656055466-248810640#9928, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,067][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1925096206-94616385#9929, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,144][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1488094201-1386116225#9931, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d15853b4-6470-4e36-bff2-46a58679280b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,147][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1300457265-481260834#9932, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,228][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1883310972-1386116225#9933, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8ca5a3f5-ba95-455a-ab72-98821f5f38b0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,232][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1432797227-2138863131#9934, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,308][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2002809001-1386116225#9935, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=56fd56e9-7144-4be8-a548-0e06cc55e5ff, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,311][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:697318442-1324436063#9936, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1862378679-1386116225#9937, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=960c3340-bf22-4be1-8e85-9db607f80e7b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,392][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:771075122-824564537#9938, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,473][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:601907173-1386116225#9939, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ecd12bc7-38fb-454d-95a2-38645b695fac, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,476][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:427610203-1570493081#9940, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,540][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1535293966-1386116225#9941, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=37a2c783-71bf-4319-801d-ba1df44ff599, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,543][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1561288996-1114412463#9942, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,618][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:798194927-1386116225#9943, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=78b4dac6-331d-49d0-b581-513a90c0a2e5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,621][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1038969777-1054964111#9944, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,698][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1297433014-1386116225#9945, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d7124a54-6b1c-47dd-9113-d9c3d3b8d539, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,701][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:406927670-1051068028#9946, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,767][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1827352718-1386116225#9947, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=07219f7a-3374-4eb9-bbb9-f5920b3c10c4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,772][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1749041914-1566077820#9948, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,838][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:578266583-1386116225#9949, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=38c560e4-666f-4e5e-8a74-d849230d49d4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,841][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1279355240-1113199482#9950, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,912][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:381141362-1386116225#9951, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=db3694be-bfb8-41ff-9b78-10d97840d6ee, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,915][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:686280281-909810602#9952, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:11,984][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1904765667-1386116225#9953, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1160d101-4961-4b84-bc02-3479e8e894e9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:11,988][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1903672876-1671738043#9954, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,060][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1154632476-1386116225#9955, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e1d4e9b9-5ab2-43ee-b720-7c060f501e74, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,064][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1965501840-388108117#9956, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,129][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1536427852-1386116225#9957, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=057ff8ae-0e0a-40be-a3e1-60efe4189640, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,132][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1533560131-488576511#9958, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,197][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1937826077-1386116225#9959, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4114f906-6f1d-4726-85e0-3b3d88a32a9a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,200][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1360588897-1455883696#9960, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,262][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1818534059-1386116225#9961, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2c3b1b42-b164-4021-b32e-e3ef01ad9bb5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,265][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1335623798-717833367#9962, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,321][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:404241459-1386116225#9963, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=455fa154-fe12-49d1-b54c-c658e4204223, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,324][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1019486807-1388337914#9964, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,381][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:860452734-1386116225#9965, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5bb1cae0-af97-4d46-bd86-8a1fdf210b96, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,384][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2104524644-503144865#9966, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,459][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:801067050-1386116225#9967, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0b172bb0-cf66-41f0-8c67-6a02cab5552e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,462][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:11939539-1358013365#9968, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,529][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1708800462-1244666452#9969, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:12,543][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1712835726-1386116225#9976, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6c286242-c09c-4db1-ae20-a6dcf1d7f4e0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,543][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:658196644-1441381277#9977, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:12,551][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:337739878-241346660#9980, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,607][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1944174436-833697188#9993, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:12,645][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1060605403-1386116225#9995, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bcfc571f-b1e6-46bf-a694-4867dda09369, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,648][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1800194006-1945524329#9996, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,702][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1758261243-371750681#9997, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:01:12,717][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1195245508--52387744#10002, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:01:12,718][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:316070153-1386116225#10003, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a82ca937-fbc5-4081-9ded-6726806ee46a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,723][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1258099809-1227297200#10004, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,725][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:458715261--53075430#10005, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,775][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1640764559-1165395758#10007, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:01:12,799][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1737149949-1386116225#10010, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d7376cec-1c28-47b0-9855-59647d7a7649, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }

[2023-12-21T18:01:12,803][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:14347491-548319261#10013, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,905][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:382855725-1386116225#10016, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cdbdf52c-9c89-463e-a020-50dcaaaba47f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,909][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1618870848-1267021632#10017, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:12,966][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:389606420-1386116225#10018, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7e3fb4c6-39e5-4405-9fec-a52551fa862e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:12,969][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:477067047-1226048239#10019, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,028][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1720075818-1386116225#10020, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c97b1500-df25-474f-84d0-da63aa99c9f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,031][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1508402575-1001748165#10021, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,098][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1473415714-1386116225#10022, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2199ceae-bd2e-4690-87c5-385b150f508e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,101][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1543829723-904829646#10023, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,170][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1321964151-1386116225#10024, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=61b200b8-8c0c-4285-859c-e2846dec6712, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,174][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:800081377-1067650444#10025, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,243][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:516132854-1386116225#10026, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=04faa978-184e-4208-952d-bd61145f0dac, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,252][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1151006851-98771508#10027, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,311][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1243622674-1386116225#10028, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=680063c6-6554-40ad-b515-27d8be7acf4e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,315][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:676458532-255416271#10029, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,380][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:165690862-1386116225#10030, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f69bbcbf-bd6a-42b1-8bd6-236e86097d98, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,386][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:485816395-1739619#10031, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,447][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:464146063-1386116225#10032, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dba8e436-c608-42a6-8c94-62c16829e221, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,450][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1495448871-230122739#10033, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,522][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:420793907-1386116225#10034, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b50ce4d9-15fb-4064-ae9a-2ec1fa4d493f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,525][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1179480058-1573227349#10035, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,568][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:289594959-669294696#10036, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,591][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1377253566-1386116225#10038, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d7c52b27-e9e5-41ad-801d-3dcfe0bb262f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,596][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:184236497-2073400568#10039, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1511026783-1386116225#10040, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0ae2bb33-9c98-4d4a-8dba-5eb551b1d17c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,665][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2091027811-2127009151#10041, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,729][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:327652260-1386116225#10042, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4a8578aa-7a46-473d-b770-e966f3ed746d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,732][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:765533895-2051309023#10043, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,796][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:744334001-1386116225#10044, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1039829a-3a1b-480c-874e-286e855a6f19, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,800][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:308624993-1347108159#10047, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,885][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1197780300-1386116225#10054, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=39ed7d95-b47f-47c0-92fa-a81aaada8343, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,889][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1966687959-743073578#10055, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:13,948][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:506445687-1386116225#10056, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d96e8bdd-1941-4741-ad6f-a486ca4ae48c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:13,951][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:401068788-508340210#10057, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,015][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:823788965-1386116225#10058, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ca10ad4c-dbbd-4946-9ba6-1b3e2e6673a7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,026][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:570180882-1584399664#10059, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,100][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1880322333-1386116225#10060, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4ee047ec-5d44-4c6b-9a54-635f5ab69d9f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,103][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2007571576-203511368#10061, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,159][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:310357150-1386116225#10062, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=52f77973-d2cf-4e46-8c78-201759195dbd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,163][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1328956939-288461656#10063, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,223][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1900572065-1386116225#10064, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=773ac779-dea1-4c0d-b6aa-d56639f80c81, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,226][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:776210394-676431692#10065, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,251][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:345649464-1386116225#10066, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e6b70801-7410-4aa2-8512-fb645d582a22, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,255][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1437239891-1218214125#10067, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,322][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:646804335-1386116225#10068, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=28b7c513-7e77-4767-8040-11c56fe9472c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,325][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1189661939-1655134341#10069, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1169742023-1386116225#10070, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0afd2662-7c81-47e2-81ba-b80a7cad959d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,392][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1667149456-1211037958#10071, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,451][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1301455798-1386116225#10072, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=36ff3312-30db-40ab-a407-8a07a5202395, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,458][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1210137508-278536533#10073, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,518][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:138696909-1386116225#10074, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b308234b-43f1-4af0-ad7a-a39827912cfc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,521][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:111556600-973015267#10075, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,584][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1159677089-1386116225#10076, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7ce78f12-1cf3-4617-82ce-e293206d830f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,587][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2017650787-966000311#10077, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,649][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1180881445-1386116225#10080, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a33321d5-32a7-417f-8730-08e953e6fb12, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,652][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:238884746-1329901246#10081, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,725][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:515196492-1386116225#10082, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=19995d3d-5f35-42f3-83de-2e1a8a6715a6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }

[2023-12-21T18:01:14,728][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:539645637-116027953#10083, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,791][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:874379111-1386116225#10084, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7a5a69e1-ea6a-4ff7-a350-c2e56ed63d58, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,794][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1611506721-173463488#10085, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,842][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2025333809-756464365#10086, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:14,867][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:194545417-1386116225#10087, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8b3b6bd0-4c28-45fc-a765-c398451a57ea, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,870][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:548880322-476255427#10088, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:14,948][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1530634149-1386116225#10089, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e761afea-fc18-42f3-af2c-387a251df29a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:14,951][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:633549522-1033516373#10090, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,012][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1862804904-1386116225#10091, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=30294d5a-ce36-42cd-a52e-e119cd974ed6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,015][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:617239563-546019677#10092, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,093][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:880099809-1386116225#10095, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fa9f6331-f0cf-48f9-b648-4dfb557656ce, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,097][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:476215868-1891554424#10096, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,116][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1380977038-1278484588#10097, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:15,164][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1715541555-1386116225#10098, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=add3acac-c985-43e8-a44f-6946f5488012, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,167][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:111324264-2048887952#10099, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,241][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1082847525-1386116225#10100, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=988d596e-fcbe-4442-9ad2-f1da667d834f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,244][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1973660277-1941482925#10101, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,320][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:314870979-1386116225#10102, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5b83c0a0-6b15-46fd-b79b-8d05ac3cddcf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,323][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1625984606-1712842207#10103, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,385][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2141120951-1386116225#10106, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7ecbefb6-fe55-4237-8663-53449629bc9c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,387][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:244259690-954993363#10107, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,452][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:293636345-1386116225#10108, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7d11a8ef-0a24-4fb4-be66-c7a1d1e1b2f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,456][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:213973998-1428217524#10109, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,524][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:101994549-1386116225#10110, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0427528f-5453-4296-a2a4-5c711e73013f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,526][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:898677144-480363764#10111, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:15,530][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1326474082-445651328#10114, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,560][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1676709414-403849389#10117, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:15,613][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:805336736-1386116225#10122, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4afa1cd1-f3a8-4f7a-b219-c4958e7b39b9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,616][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1539352780-1973992424#10123, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,680][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:953938502-1386116225#10124, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8eecf2b4-0d8c-4dc4-a788-f9dcab02cfef, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,683][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:315529925-408135449#10125, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,755][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:755593956-1386116225#10126, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d5fea8b1-268c-424e-8710-25c4ba06bfce, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,758][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1175190039-1993113285#10127, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,827][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:163060360-1386116225#10128, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=40b9fd80-760a-4ce1-9bb8-36202dbebb52, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:280152683-366795787#10129, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,904][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:977197161-1386116225#10130, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c908eb90-dc05-472b-95f2-7f93c0b45d41, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,909][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:203315173-431041269#10131, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:15,972][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1569739946-1386116225#10132, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b83a085f-9631-4615-8a45-a3379ad91882, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:15,975][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:525752890-1813635423#10133, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,041][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:996705198-1386116225#10134, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a6ccb948-f4b7-4cd7-9fd2-3f41bcfe4ce2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:16,044][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:314978886-45110377#10135, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,068][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:798640527-204097082#10136, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,122][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1926078993-1386116225#10140, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=895470b4-c915-43d1-9cf5-1524123b5c8a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:16,126][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:794624507-793647973#10141, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,180][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1056752049-1386116225#10142, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4f8c6c67-65dc-443f-98a0-476e5a604ff5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:16,184][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1382410546-211840722#10143, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,245][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1637279680-1386116225#10144, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7f66d44f-a1c7-4aea-b712-d1b6710cb2c9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:16,249][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1270215780-352275268#10145, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,341][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:505183663-1386116225#10146, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=36002400-654d-4973-80e5-b421a8702bc5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:16,362][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1773018256-1727478153#10147, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,544][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:31361367-1386116225#10148, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=61250d31-ba22-4b48-b56d-95a5e9ef44ea, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:16,556][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:42330087-1825454488#10149, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,680][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1500983700-1386116225#10152, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9e63bcb0-af53-420e-aab1-5f8d92f1173e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:16,683][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1973281293-721004102#10153, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,739][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:260666781-1386116225#10154, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3d71ba81-e41a-43be-be45-5b6ce8f621c6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:16,743][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:133088801-452013501#10155, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,817][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1921351878-1386116225#10156, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=59a2a6c6-1117-4c19-8e08-fd15d3dcc07d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:16,820][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:15087972-1741317288#10157, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,886][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:132398064-1386116225#10158, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=57a84a00-53c5-40b1-b6ab-3cd389b5a636, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:16,889][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:384068030-90911258#10159, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:16,957][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1744785673-1386116225#10160, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a1e057dc-d57e-4916-962d-503b01aa31ff, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:16,960][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:880215754-2935752#10161, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,026][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:597620214-1386116225#10162, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=eaa6905c-b8ca-40d3-8368-d8a01b5bd31d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,030][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:900787178-1763173540#10163, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,114][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2109985523-1386116225#10164, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=017c8d30-0ff5-49c9-9d39-caafb1886c3c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,118][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1708846618-55450594#10165, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,190][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1541299456-1386116225#10166, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=88d6dcbf-45de-4e04-9e3e-363c67c0f918, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,192][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:831741914-1744289672#10167, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,257][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1186216043-1386116225#10168, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d04487b8-1900-4314-92db-2b0728652357, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,260][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1441740626-646817542#10169, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,342][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:315704334-1386116225#10170, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e2f0f25e-ad62-4389-b06f-c1cbfe8b0599, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,345][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:231428482-1469756492#10171, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,408][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1910921453-1386116225#10172, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9ee92d8f-86c5-4c2a-ab33-c3f522efdcbf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,413][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2078497866-815620519#10173, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,479][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1484340620-1386116225#10174, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c540f377-ef30-4a7e-b91f-f9acf5ad273d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,482][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1728930167-1698140430#10175, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,544][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1072247176-1386116225#10176, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b048af7c-67d0-46c8-b8b8-59e656e6660e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,548][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:81232110-1604077962#10177, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,625][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:662762319-1386116225#10178, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3daed09e-a649-47a6-b6d9-497dd2f04a93, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,629][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1393987031-183556442#10179, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,692][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1692595810-1386116225#10180, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ffdc9ec8-9272-4756-a94a-348ec6d02643, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,695][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:848885786-259336154#10181, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,760][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1969627695-1386116225#10184, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6962f021-90db-4cf6-be5f-68647e405f98, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,762][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1760197590-1683768728#10185, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,829][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:58009722-1386116225#10186, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=67a614ed-ced7-4d68-8f63-2b98b3b0caa8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,832][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:292628769-924616482#10187, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,892][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:600811984-1386116225#10190, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=003dc81f-9fb0-49db-b770-b331d3181630, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,895][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:202600156-174426691#10191, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:17,949][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1349327405-1386116225#10192, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=74a4efac-ef02-4437-b6d3-53ddc9997145, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:17,951][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:306545167-1093870322#10193, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,011][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:350104917-1386116225#10194, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=91744571-ff7a-4c0e-900b-54b4fdc7691a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,014][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1447154054-1892707999#10195, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,073][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1052959052-1386116225#10196, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1388dc89-0617-4589-a386-29f00449e280, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,076][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1312542576-373768439#10197, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,136][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1612533357-1386116225#10198, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0a01c52f-5931-4fb8-a285-80ab79ecc866, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,139][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1314029144-1023755675#10199, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,202][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1478069297-1386116225#10204, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2cfe8e89-46ec-426f-94ac-a1bc4a32b77d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,206][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:760569092-28962977#10205, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,267][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1028171490-1386116225#10206, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8fa14ff4-9cb0-4cf2-b516-eed25268bc9a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,270][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1556409968-1266303470#10207, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,330][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:346679430-1386116225#10208, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1ed3b6b0-6aea-447e-af83-6c915e96d1f5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,332][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1287686392-36848953#10209, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,358][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:508404312-169987492#10210, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,401][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1915098548-1386116225#10211, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4a41331d-ce65-4705-a94a-e83d58e3c2be, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,404][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2038336609-1620232081#10212, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,462][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:697319086-1386116225#10213, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ed84b0b6-946a-4682-b2ed-5b3a13f05b25, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,465][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:677188659-945198988#10214, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,523][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1513887398-1386116225#10215, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8568b207-8818-4a39-a7dc-cdfeef142490, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,526][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:902175075-1126104581#10216, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,549][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:610636268-173886820#10217, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:18,577][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1968574089-1944723058#10224, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:18,589][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:244787025-825859870#10230, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,620][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1593097384-1386116225#10236, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9365560d-8333-436e-bc1c-68a6fafe5f12, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,629][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1960771062-1466201233#10240, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,655][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:482187639-888189184#10241, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,666][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:247666718-1974068370#10243, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2196.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2196, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,711][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1618902147-833697188#10246, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:18,764][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:87010673-1386116225#10248, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=518aa0b4-e9f5-4d9a-82b2-42c9998ce635, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,768][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:490917629-510702062#10249, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,786][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:887514213-578001167#10250, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:01:18,814][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:407135399--52387744#10255, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:01:18,883][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1791266381-2035121650#10256, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=395.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=395, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:01:18,884][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1618482939-1386116225#10257, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3c7d0942-b212-4b7f-aed6-7744a613da96, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,893][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1731888093-1497355732#10260, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:18,995][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1659237128-1386116225#10263, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7378594a-656b-4edd-a3c8-2a9451bc34ae, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:18,998][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1108016737-1906162070#10264, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,088][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1445675780-1386116225#10265, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=194d2413-8ef6-47e5-a9c1-496f76ebc908, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,090][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:454793082-251104142#10266, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,162][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:314229455-1386116225#10269, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dd18ec88-5f4d-44c8-83f0-5453d3a9c04b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }

[2023-12-21T18:01:19,165][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:503677183-1508008962#10270, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,266][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1803239243-1386116225#10273, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6cbf7b6a-2404-42a9-9fc0-0c92b33277d7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,270][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:798172241-497244964#10274, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,339][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1462496998-1386116225#10275, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8af2eaaa-13eb-4e7b-bb9e-aa5f9786ff60, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,349][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1696072239-1394541425#10276, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,432][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1415710797-1386116225#10277, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=50377f7c-c7cc-4f6b-b343-65eabf206a13, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,435][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1547075833-2031810602#10278, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,504][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1387624691-1386116225#10279, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=3c1dcfce-bc33-436a-938c-84b34dd6b474, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,507][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:382804616-2114472419#10280, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,599][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1350383008-1386116225#10281, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=47bd1780-9e57-43e8-9490-6348418d4c49, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,602][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:695647676-917245816#10282, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,653][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:181866271--689251507#10283, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=407.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=407, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,670][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:859765712-1386116225#10285, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9351b11f-e0a6-43f8-a179-5cfecf782dfe, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,673][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:800664406-2042111510#10286, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,757][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1260745161-1386116225#10287, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7cafda86-7f18-48ae-83a6-e6a0d2f41100, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,760][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:260170502-1761909307#10288, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,831][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1362397595-1386116225#10289, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=972803b4-0df3-40a6-bf9e-db327da230e7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:838795597-828792231#10290, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,867][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1920164096-1763135841#10291, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:19,912][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2097077490-1386116225#10292, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c326db40-57d2-47ee-834b-e2357768efc3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,915][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:166980263-1078945725#10293, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:19,988][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1128763766-1386116225#10294, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=89fb33c8-5cfb-41a7-b9e6-75f74e1e5f89, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:19,990][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1230294176-1608823295#10295, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,070][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1680688945-1386116225#10296, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c4c20171-0022-43b7-9d4c-35852864143f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,073][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:463386339-1950374140#10297, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,126][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:240219330-13348598#10298, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:20,144][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1854683554-1386116225#10299, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2d7553f5-c698-41e4-925b-a5c4f85dfbf5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,147][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:410852151-487562142#10300, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,214][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1080965847-1386116225#10301, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c4bf61eb-db60-4732-aeb0-d97cc5251b6c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,217][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1335904849-1064584241#10302, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,278][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1590098730-1386116225#10303, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c5915317-180c-45d6-8a01-115ab63de008, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,282][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1875888807-577824717#10304, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,346][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1069050494-1386116225#10305, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a7970d9f-5800-4aa4-99ee-8609b29713b1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,349][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1456396552-1204140932#10306, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,413][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1655595582-1386116225#10307, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1fb9b6e7-3415-4900-bdec-06bee8d77daa, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,417][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:515444623-1050645449#10308, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,476][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1416369669-1386116225#10309, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2c4133ca-05f3-4ee8-870b-ceb25b833809, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,479][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1161961764-324115316#10310, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,554][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1368544012-1386116225#10311, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6aab534b-c235-4194-b0a7-15c30accf6c6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,558][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1710930693-837152159#10312, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,626][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:779111148-1386116225#10313, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a15dab52-d437-4c43-91b5-b7ca978213fe, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,629][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1840866845-1571543612#10314, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,693][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1136413955-1386116225#10315, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd495f79-5e3d-4662-b625-01e509daeb0b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,696][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1874286770-1234715351#10316, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,758][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1256262626-1386116225#10317, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=93d4660e-98c6-4b53-b7e2-749705ebe89e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,761][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1796506600-1043543280#10318, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,816][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:892749595-1386116225#10319, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a0cbed2c-aa24-4952-bd8c-340a7a383614, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,822][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2009789508-940450454#10320, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,874][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:524092883-1386116225#10321, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=59793943-521b-4869-88ef-2825da3ca309, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,877][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:406095792-956049446#10322, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,932][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1907337021-1386116225#10323, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=abb57956-d36c-4624-88be-13d0d93a9576, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,934][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:113977158-989735208#10324, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:20,990][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1671072585-1386116225#10325, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=594e5177-a045-4401-bd71-852ad4221b27, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:20,993][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1862291016-816756217#10326, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,058][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2077392301-1386116225#10327, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=db473f3a-1a52-4f65-bb62-63cb41517579, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,061][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1277522269-565839007#10328, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,072][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:669981928-895436554#10329, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,122][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1686006828-1386116225#10331, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=af8c39a0-4e2a-4180-80c6-bf023dbaddcd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,133][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:212421147-1801547082#10332, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,209][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:445518405-1386116225#10333, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d5fb5d08-a53a-423f-bca6-49430b410c61, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,211][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:218501684-1262057501#10334, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,294][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:735205133-1386116225#10335, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=45ad59e3-d4ad-4d98-89f5-b7bff6cd408f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,296][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1092908040-2089699754#10336, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,379][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2088189878-1386116225#10337, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8c517cb0-5314-4cfb-9b9f-0322f091b526, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,382][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1168405770-667078018#10338, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,472][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:697238473-1386116225#10339, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f257381f-8006-46dc-9411-86a30c7b19a8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,475][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1816134593-170534758#10340, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,529][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:121854624-1897627376#10341, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:21,548][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:175136646-1535802677#10346, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:21,554][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:993351036-1386116225#10351, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ca0aa2d6-786d-4b2d-a02c-c4acf24df400, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,558][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1794480280-113758220#10352, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,630][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1569572517-1386116225#10353, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e9c48bf8-eb04-4656-b55d-a8a4ce14de4a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,633][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1275262685-175474333#10354, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,700][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:847929455-1386116225#10355, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=02a1ed1a-1d83-4024-a682-78735f78c2cb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,703][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:25243765-1525582470#10356, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,781][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2089397800-1386116225#10357, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c88d510a-d939-4631-ac4a-b401ece380ee, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,785][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:492908750-367765903#10358, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,877][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:998226702-1386116225#10359, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=14006651-ff26-43c7-90a2-184ab5dd18a4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,881][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:179747495-507841663#10360, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:21,976][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1445620201-1386116225#10361, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=efc006dc-42df-44a6-b99b-d9e6dcae608e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:21,979][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:281743337-798485717#10362, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,053][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:419904428-1386116225#10363, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6be56893-7b03-4d69-8838-fddc563d4a56, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,057][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:476539972-1419480166#10364, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,141][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1157243748-1386116225#10365, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e6ddae1a-65de-4542-a447-0f0513ac9a02, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,145][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1686153740-1126367124#10366, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,219][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1272099626-1386116225#10367, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b8657fe7-95d7-48f7-8ce3-3388658d03f0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,224][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1587959863-1066883365#10368, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,298][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1797119772-1386116225#10369, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7d2a9ef7-0005-4f4f-aa3f-540180e41d01, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,302][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:898136758-1493429200#10370, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,381][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1557712804-1386116225#10371, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9389baca-622d-4ca9-b89c-edc21e1aa49d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,385][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1505234460-789811799#10372, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,459][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1762177294-1386116225#10373, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ed2dffb7-7027-436f-b7bb-7a9f7cb0f1e3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,463][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1941431908-1793515232#10374, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,532][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1498708161-1386116225#10375, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=78689b20-d503-49cc-a417-47a85c4576d6, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,536][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1970811428-967863849#10376, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,600][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1711126049-1386116225#10377, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bd74de0a-3684-4a45-99a9-8d11b86d5ebe, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,603][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:529877039-726184171#10378, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,668][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:296964749-1386116225#10379, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=56df9411-b577-49d8-aefd-05317f83026c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,671][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:435659300-748045573#10380, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,736][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1110931348-1386116225#10381, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b0cfe250-8d20-4a57-8a51-07c6d0371661, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,740][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1234924133-1842946032#10382, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,807][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1937363235-1386116225#10383, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6da3ab38-6a4e-4e5d-badb-662cbd16ee35, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,809][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:176919311-403820641#10384, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,877][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1024616972-1386116225#10387, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6c90a968-5070-484a-9f86-ae02fad09b1a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,879][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:14636100-1444588731#10388, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:22,950][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1075772609-1386116225#10389, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=51875469-f4c5-4f17-a8b1-d8037ff56fa9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:22,954][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1861401796-343255082#10390, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,027][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:386507115-1386116225#10391, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ff7723fe-0e57-4c1c-bdeb-0085506dbac0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,031][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:541503423-1529426927#10392, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,115][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1654973528-1386116225#10393, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=edad6c74-1a36-40ab-bcb4-9da09515c9f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,118][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:956044190-760379497#10394, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,190][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1064734823-1386116225#10395, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=171de593-99f3-4dd6-9dcb-fa2b4c7b87b5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,193][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2058696181-571324894#10396, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,263][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:480382150-1386116225#10397, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7af254f5-6054-42ad-8d83-3b581a17b11f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,266][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:400310941-1142277902#10398, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,332][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:186209563-1386116225#10399, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e485c0b1-30e0-47d7-908d-af528c3648e7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,335][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:122793090-1919737439#10400, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,403][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:405490347-1386116225#10401, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=20eba11f-eec7-4373-99fd-380d714e0c52, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,407][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1499166008-1399121709#10402, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,473][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1206797624-1386116225#10403, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d3e0485f-1f4c-4d1c-ba39-316b39ceb7bf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,476][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:97661308-119694923#10404, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,551][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1938531341-1386116225#10405, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fd06147d-384d-4c00-89e6-9f4b9c4e239c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,554][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1190783169-1387559091#10406, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,573][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1177570448-1756701591#10407, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,621][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1627615648-1386116225#10409, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f9af5564-2dc6-4246-a332-f30957449891, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,624][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:268692691-1418950287#10410, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,688][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:368795153-1386116225#10411, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c99acc89-0f32-4fbe-9ffe-4e8921302d70, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,691][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1863295871-1617280825#10412, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,750][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:789420724-1386116225#10413, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=204a6c0f-1c41-4502-ba59-01cc89fc2de9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,753][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1623802514-1926173103#10414, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,831][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1058989240-1386116225#10415, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cda82a45-d8b1-4af4-94a8-cc1998a97b9e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,833][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2089095637-1458700549#10416, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,901][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1547313181-1386116225#10417, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0d037103-73bd-46c5-8e15-0300c832b4f9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:23,905][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:340337670-1083606243#10418, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:23,998][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:111828957-1386116225#10419, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0b74ba27-3b65-41d4-9f88-1761fc91458d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,002][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:194887133-1445581244#10420, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:24,086][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:577566214-1386116225#10421, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=50e80be5-c2cb-4773-b63f-d108b471e7f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,089][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1995178273-284764532#10422, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:24,159][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:138788582-1386116225#10423, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=885b4e5e-7472-4d43-9c5e-9ff60d7cd2eb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,163][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1297917230-1538216109#10424, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:24,234][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:46428197-1386116225#10425, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cf2dd07d-7365-47cf-bf96-6fefaa5b86db, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,237][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:659770389-252635140#10426, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:24,314][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:780532592-1386116225#10427, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d4616527-e5a1-49f6-b4ad-67e24f5c83c9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,318][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:266466269-846149072#10428, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:24,397][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1247393105-1386116225#10429, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8f773c6a-b363-498e-a009-126d6076e658, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,400][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1267112209-1266279591#10430, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:24,473][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:15964589-1386116225#10431, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ba86ecde-e54f-4f17-8526-9261b1f1f2c9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,476][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:126310367-2016811055#10432, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:24,532][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1864211569-1063146921#10433, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:24,549][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1811438277-1718428144#10440, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:24,598][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2096011090-1386116225#10450, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b06ad824-d0f2-4b02-aea3-28e4e2e910fd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,601][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1615611795-1573445098#10451, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:24,662][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2005017848-833697188#10457, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:24,724][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:368529692-489357559#10459, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=997.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=997, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:01:24,773][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:525974558--53075430#10464, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=514.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=514, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,777][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:956557481--52387744#10466, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:01:24,780][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:82118034-1386116225#10467, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e23daef7-36c3-4748-abbb-cf20691d484d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,784][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:268743486-527004271#10468, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:24,835][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2032808094-1598736818#10469, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=821.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=821, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:01:24,862][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:724945827-1386116225#10474, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5591af5b-0c1a-429f-b077-462e401fca29, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,865][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1793199142-1045225759#10475, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:24,892][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:373987464-532989098#10476, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:24,940][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1859930762-1386116225#10477, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=21e92d7f-292b-44db-b024-05a047af4fdf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:24,943][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1706911816-1008744953#10478, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:25,039][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1010283011-1386116225#10479, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=142c3054-542f-42b5-8597-0178bb85cb56, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }

[2023-12-21T18:01:25,044][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2129426477-1202983630#10480, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:25,119][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:282257794-1386116225#10481, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2019beb1-cd90-4f68-b61e-b2d980889c81, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:25,123][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1237699928-1956104808#10482, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:25,147][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:364859624-431734991#10483, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:25,210][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:412999249-1386116225#10484, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=aa1bc9a1-9cb2-4649-a243-c74a13ecad63, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:25,213][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1764227527-249734223#10485, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:25,287][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:528792121-1386116225#10486, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a2f2fb24-c498-4300-8717-f4ad7f0b21bb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:25,290][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1772750790-597971985#10487, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:25,373][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1884520753-1386116225#10488, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b8604f7f-42ed-4843-b03a-8af117225209, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:25,376][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1973123171-1849719363#10489, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:25,444][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2078247635-1386116225#10490, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=41dc8247-7395-4695-9d1d-1ab7486d918f, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:25,451][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1466811514-1449662042#10491, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:25,527][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:392812176-1386116225#10492, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4ea9330b-f719-4145-a23d-d6d4c1c48423, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:25,529][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2015241364-358734774#10493, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:25,604][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1827263963-1386116225#10494, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=04c90cf7-b622-4eaf-b295-5f23df0222da, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:25,608][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:739677044-987404906#10495, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:25,708][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:674238653-1386116225#10496, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d64ef5a8-253a-4671-bdbe-5406109a7081, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:25,716][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:862532385-676258449#10497, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:25,807][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:792632954-1386116225#10498, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=caaf4ab1-c6fb-46e9-af3e-750662c316cf, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:25,810][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:819677663-1589419108#10499, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:25,906][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1983516763-1386116225#10500, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=33a2fc10-20a5-495e-a417-20fd4a4359ee, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:25,910][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:607538345-2075355348#10501, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,007][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1423918154-1386116225#10502, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d1929dc6-70bb-4f43-b77f-db04350c2efc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,011][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:290210764-724148797#10503, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,076][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1030549749-1568262724#10504, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,093][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2084701076-1386116225#10506, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=049c8b73-ebb7-4f56-ad2e-f214d7d6750a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,097][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:777560068-1208403896#10507, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,166][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:659853096-1386116225#10508, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4ad08247-0860-4bc7-8173-f07bf259f9b5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,169][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:314010901-26197741#10509, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,240][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:30075729-1386116225#10510, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c1ea245a-7048-438c-8b40-5f1b76a26644, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,243][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1790735960-343496624#10511, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,322][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:798560822-1386116225#10512, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0c9e16b7-d106-4b67-bf73-7eeb4e6bea1e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,325][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1032802287-1091298917#10513, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,418][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1135340274-1386116225#10514, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=e00a7ebd-7032-4a27-a7c3-bed2e3ffc895, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,421][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1208764074-370560204#10515, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,508][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1082458208-1386116225#10516, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=611ae4ff-20ef-45a8-92af-69e89507bd41, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,511][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1369541078-1325888841#10517, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,607][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:381942594-1386116225#10518, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c204d688-0940-4fc6-b8bd-f73bebcd1c76, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,611][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1704215317-1094718279#10519, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,700][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1898726158-1386116225#10520, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=237d7162-b0ff-4f99-87f4-fd0853e3efdc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,702][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:485678464-1756061290#10521, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,767][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1842138019-1386116225#10522, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6b85b021-ce90-49af-afd6-75d4015964ed, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,770][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:803222657-1861996561#10523, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,836][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:86130810-1386116225#10524, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d265419c-2c38-4d4b-ad53-70f866d6133d, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,839][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1693392531-1451574378#10525, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,897][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:213037687-1386116225#10526, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=0a2878f1-9d98-4941-b0ea-b504163807b7, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,900][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2020554247-1218710083#10527, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:26,980][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:529900764-1386116225#10528, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=239fdb5e-3910-4132-9041-bd565d47c89c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:26,987][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1420009026-679028392#10529, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,048][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:336590174-1386116225#10530, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=6f6d140d-fb26-4bcc-a08a-be9117c6d509, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,051][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:690483886-1102644187#10531, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,118][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:54089269-1386116225#10532, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=fc8f5b27-20cc-4274-9173-e35166e6cf38, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,121][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:161530912-1745747930#10533, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,198][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:436301103-1386116225#10534, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a4eda028-c414-4031-8aa5-842d20f13fb3, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,201][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2116666103-2005377330#10535, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,276][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:679512567-1386116225#10536, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=26138255-882c-4d21-8847-db13fdd329cc, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,280][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2022308390-2138909122#10537, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,351][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1137589436-1386116225#10538, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dc3390d2-8018-473b-b4b8-3b6fd50b547a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,354][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1341350560-95929437#10539, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,417][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:168772110-1386116225#10540, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8bf84ce3-8b49-45da-9896-c57b71ac77be, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,421][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:853038599-612194983#10541, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,475][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:469122677-1386116225#10542, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=21740f59-aa05-4bdf-a9cc-821d1d244346, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,478][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1892666090-1273064834#10543, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,532][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1946031547-1229672398#10544, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:27,535][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:932565965-1386116225#10547, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c705476a-fc80-4ffb-b4d6-661dff7725d1, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,541][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1802818724-2046384658#10550, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:27,545][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:953378161-1008922512#10553, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,615][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1607242381-1386116225#10556, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a352bd8e-1ff4-478d-a781-d6ebb92a2b2b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,618][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1899945284-1109668027#10557, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,677][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1180576002-1386116225#10558, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8faaf270-58af-4a53-bef2-cf093ba87ed0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,680][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1644113251-1242173603#10559, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,740][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:581203276-1386116225#10560, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2ed284b2-a48b-4e20-a12c-f0cc11636ddb, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,750][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1297686619-781934755#10561, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,815][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1330930517-1386116225#10562, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=463268aa-9510-4a39-a625-1e0fe280aa7c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,818][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:915915814-746739039#10563, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,879][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1117383246-1386116225#10566, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=732db767-eccd-4b20-98ef-7e30d763d3d9, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,882][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:677245804-1563820220#10567, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:27,941][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:784033667-1386116225#10568, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=95510173-0f3b-4607-b41f-c1fcd82b9b5b, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:27,944][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1434995144-1805567627#10569, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,007][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1677724420-1386116225#10570, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=864289bc-59e4-41bb-9e57-bbdc06c3fa39, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,010][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:740269575-1103186136#10571, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,076][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:271129520-1386116225#10572, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2ba5fb62-161c-4243-a848-c95f8c6d6200, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,080][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1443929889-1260892662#10573, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,137][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:493832289-1386116225#10574, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=918e94c1-29e1-4ebd-bd42-a493b3265a25, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,144][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:454619443-1347742976#10575, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,221][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1746772784-1386116225#10576, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f5d0ad03-ca43-455d-93df-59c6651daedd, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,224][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:49256892-1949380630#10577, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,293][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:203545884-1386116225#10578, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5f87e748-f561-42c3-9347-6e233e8ee6ce, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,297][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:687654602-1597444664#10579, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,388][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1418572723-1386116225#10580, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=b5a3c144-2603-4ded-9cea-c1d88aabbfc4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,392][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:560681499-1546090400#10581, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,489][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:860280067-1386116225#10582, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dc99dc81-1003-4c5f-bd54-4058e81a3755, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,493][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:304291960-1977763542#10583, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,577][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:249702907-1763689968#10584, TYP:NodesInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/nodes/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_nodes, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,586][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:919069816-1386116225#10586, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=9d35ca67-008c-437d-8970-a60339b2d2f2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,589][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1655965771-92747325#10587, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,657][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:439708295-227679348#10588, TYP:GetRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:GET, PTH:/.kibana_7.17.15/_doc/config:7.17.15, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,660][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:873207425-1386116225#10590, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d73b3167-5406-4d98-a965-da260abba6b2, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,664][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1327934429-1932286682#10591, TYP:MonitoringBulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:admin/xpack/monitoring/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:POST, PTH:/_monitoring/bulk, CNT:<OMITTED, LENGTH=2203.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=2203, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,664][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:220539800-139332082#10592, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,737][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:27515047-1386116225#10593, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=87e8dff9-1bd0-4a03-b5f6-f473e1d2fb4a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,740][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1431268876-1897064150#10594, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,824][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:166420639-1386116225#10595, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bba1b200-213f-4623-b4ef-7dc113c34eed, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,828][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:370337765-948159525#10596, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,891][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1589752245-1386116225#10597, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=f3e31e42-2c1c-48cc-8fdf-ea50b302c377, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,895][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:209505642-223358671#10598, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:28,966][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:735338924-1386116225#10599, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=02d90471-8dba-4491-8b4b-3e392488275a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:28,969][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:2026582394-305575060#10600, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,041][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:513594955-1386116225#10601, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=bc5f0af7-9f7f-441d-b9a9-4f1c125d599a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,045][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:382537013-934067831#10602, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,108][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:270085634-1386116225#10603, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=2a78a48b-e0e8-47df-9049-f2a2ed3dd10e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,111][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1758436548-378900557#10604, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,168][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1142479854-1386116225#10605, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d4796321-95f0-43ae-a17b-3bbecd8297b4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,170][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:489194577-152375948#10606, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,227][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:859372571-1386116225#10607, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4476b10e-32c1-4223-9f5d-3895620d0cef, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,232][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:830314041-1747879499#10608, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,292][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1225681072-1386116225#10609, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=4073bb9d-eb89-486e-a317-95f6eee53f2a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,295][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1025678766-1622349933#10610, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,354][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2083768046-1386116225#10611, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=7428cefb-7df1-469c-8454-dd34c3a55a76, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,357][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1178757680-1864646843#10612, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,431][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:388783426-1386116225#10613, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=07a03834-bb3f-4037-962b-e701f6d31a84, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,435][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1976237567-546048668#10614, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,499][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1835055022-1386116225#10615, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=16f87183-db09-487d-b971-139634d4be7c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,503][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:408101133-978584317#10616, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,573][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2060203969-1386116225#10617, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=c1f35e2a-504a-4291-a7f1-1cd695ef20f5, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,575][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:318317297-321069802#10618, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,641][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:167414169-1386116225#10619, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=dccc9440-d632-4eaf-8820-52d34ec45b5a, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,645][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:311678296-1227260753#10620, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,717][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1125702893-1386116225#10621, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=06f5ad08-32a3-4d0e-bc6a-e363cb184d10, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,719][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:519254870-314969285#10622, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,778][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1862740423-1386116225#10623, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=1db13ae8-02c6-4ef2-bd2f-91eb96b44e85, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,782][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1794994046-1838385396#10624, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,844][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1334903207-1386116225#10625, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=cbfbad18-69c2-4693-923f-84e93eac4806, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,847][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:428753027-411650643#10626, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,912][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1772926366-1386116225#10627, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=83ad2ea1-6a5c-4468-85c7-f9e729b14858, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,914][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1123841898-1603318525#10628, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:29,917][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:779554101-1159121440#10629, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:29,989][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:396348163-1386116225#10630, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a25115b5-501b-4db2-9284-0e9830bd08f8, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:29,992][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:454265899-219882713#10631, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:30,060][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2125445264-1386116225#10632, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=991ef767-502f-47ff-a076-2c2527567aef, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:30,063][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:394371989-284432282#10633, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:30,121][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1151194289-1386116225#10634, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=8fd5cb2b-c8d0-4b59-a7c4-b42a71668b84, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:30,124][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1837798665-1201208405#10635, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:30,199][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:754594531-1632242647#10636, TYP:MainRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:cluster:monitor/main, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:HEAD, PTH:/, CNT:<N/A>, HDR:Accept-Encoding=gzip,deflate, Connection=Keep-Alive, Content-Type=application/json, Host=localhost:9200, User-Agent=Logstash/7.17.15 (OS=Linux-4.15.0-142-generic-amd64; JVM=Eclipse Adoptium-11.0.20) logstash-output-elasticsearch/11.4.1, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false]], }
[2023-12-21T18:01:30,205][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1481762858-1386116225#10637, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=a7a6ef79-644d-4dee-9c69-3d12882c2a09, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:30,207][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1487658273-624660989#10638, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:30,273][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:345907774-1386116225#10639, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=976f053e-800d-4321-afda-a2bab629e5ac, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:30,277][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1138329663-1167923120#10640, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:30,336][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1011929735-1386116225#10641, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5720184e-4db7-476d-9bd3-b672bf3e5df4, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:30,339][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1497008353-1445821321#10642, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:30,407][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:2074134123-1386116225#10643, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=ef766f6a-5208-4225-8100-e1e010358f25, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:30,410][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1105131378-1286472232#10644, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:30,468][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1902299399-1386116225#10645, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=5f0a172f-0a0a-4b15-8a52-ed3dfcba7900, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:30,471][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:202164958-987748682#10646, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:30,532][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:844266320-255944066#10647, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=4177.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4177, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:30,552][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:106701691-1386116225#10654, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=d5ab9060-d1b0-4c12-a554-f638ce04794c, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:30,556][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1875126833-1887309790#10655, TYP:UpdateByQueryRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/update/byquery, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_update_by_query, CNT:<OMITTED, LENGTH=6419.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=6419, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:30,558][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1628567622-195138688#10658, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:30,593][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1165165245-833697188#10671, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager, MET:POST, PTH:/.kibana_task_manager/_search, CNT:<OMITTED, LENGTH=4430.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=4430, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager]], }
[2023-12-21T18:01:30,630][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:236534719-1386116225#10673, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=047bbc81-6d9b-4b41-a86b-e4378c879932, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }
[2023-12-21T18:01:30,633][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:596044865-139909430#10674, TYP:XPackInfoRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:cluster:monitor/xpack/info, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:<N/A>, MET:GET, PTH:/_xpack, CNT:<N/A>, HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=0, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user]], }
[2023-12-21T18:01:30,654][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:811168803-2002412884#10675, TYP:BulkRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/write/bulk, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_task_manager_7.17.15, MET:POST, PTH:/_bulk, CNT:<OMITTED, LENGTH=483.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=483, content-type=application/x-ndjson, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.kibana_task_manager_7.17.15]], }
[2023-12-21T18:01:30,670][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] ALLOWED by { name: 'Require HTTP Basic Auth', policy: ALLOW, rules: [auth_key] req={ ID:1672112922--52387744#10680, TYP:SearchRequest, CGR:<N/A>, USR:user, BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.reporting-*, MET:POST, PTH:/.reporting-*/_search, CNT:<OMITTED, LENGTH=298.0 B> , HDR:Authorization=<OMITTED>, Connection=keep-alive, Host=localhost:9200, content-length=298, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->true] RESOLVED:[user=user;indices=.reporting-*]], }
[2023-12-21T18:01:30,716][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [ubuntu] FORBIDDEN by default req={ ID:1569427760-1386116225#10681, TYP:SearchRequest, CGR:<N/A>, USR:[no info about user], BRS:true, KDX:null, ACT:indices:data/read/search, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:.kibana_7.17.15, MET:POST, PTH:/.kibana_7.17.15/_search, CNT:<OMITTED, LENGTH=312.0 B> , HDR:Connection=keep-alive, Host=localhost:9200, content-length=312, content-type=application/json, user-agent=elasticsearch-js/7.16.0-canary.7 (linux 4.15.0-142-generic-x64; Node.js v18.18.2), x-elastic-client-meta=es=7.16.0p,js=18.18.2,t=7.16.0p,hc=18.18.2, x-elastic-product-origin=kibana, x-opaque-id=50c6f968-305d-47dc-9be4-25f6bacbb99e, HIS:[Require HTTP Basic Auth-> RULES:[auth_key->false] RESOLVED:[indices=.kibana_7.17.15]], }