github-mirrors/elasticsearch
1
0
Fork 0
mirror of https://github.com/elastic/elasticsearch.git synced 2025-04-25 15:47:23 -04:00
Code Issues Projects Releases Packages Wiki Activity
elasticsearch/docs/reference
History
Lyudmila Fokina ee66d6f11f
Support audit ignore policy by actions (#67477) 
* Support audit ignore policy by index privileges

Adding new audit ignore policy - privileges
For example, following policy will filter out all events, which actions
minimal required privilege is either "read" or "delete":

xpack.security.audit.logfile.events.ignore_filters:
  example:
    privileges: ["read", "delete"]

Resolve: #60877
Related: #10836
Related: #37148

* Support audit ignore policy by index privileges

Adding new audit ignore policy - privileges
For example, following policy will filter out all events, which actions
required privilege is either "read" or "delete":

xpack.security.audit.logfile.events.ignore_filters:
  example:
    privileges: ["read", "delete"]

Resolve: #60877
Related: #10836
Related: #37148

* To avoid ambiguity (as cluster and index policies may have the same
name) changing implementation to have to separate policies for
`index_privileges` and `cluster_privileges`.
If both are set for the same policy, throw the IllegalArgumentException.

* To avoid ambiguity (as cluster and index policies may have the same
name) changing implementation to have to separate policies for
`index_privileges` and `cluster_privileges`.
If both are set for the same policy, throw the IllegalArgumentException.

* Fixing Api key related privilege check which expects request and
authentication by introducing overloaded
version of findPrivilegesThatGrant
just checking if privileges which can grant the action regardless of the
 request and authentication context.

* Fixing a test; adding a caching mechanism to avoid calling
findPrivilegesThatGrant each
 time.

* Support audit ignore policy by index privileges

Addressing review feedback

* Support audit ignore policy by index privileges

Addressing review comments + changing approach:
- use permission check instead of simple "checkIfGrants"
- adding more testing

* Support audit ignore policy by index privileges

Addressing review comments + changing approach:
- use permission check instead of simple "checkIfGrants"
- adding more testing

* Support audit ignore policy by index privileges

Addressing review comments + changing approach:
- use permission check instead of simple "checkIfGrants"
- adding more testing

* Support audit ignore policy by index privileges

Addressing review comments + changing approach:
- use permission check instead of simple "checkIfGrants"
- adding more testing

* Revert "Support audit ignore policy by index privileges"

This reverts commit 152821e7

* Revert "Support audit ignore policy by index privileges"

This reverts commit 79649e9a

* Revert "Support audit ignore policy by index privileges"

This reverts commit 96d22a42

* Revert "Support audit ignore policy by index privileges"

This reverts commit 67574b2f

* Revert "Support audit ignore policy by index privileges"

This reverts commit 35573c8b

* Revert "Fixing a test; adding a caching mechanism to avoid calling findPrivilegesThatGrant each  time."

This reverts commit 7faa52f3

* Revert "Fixing Api key related privilege check which expects request and authentication by introducing overloaded version of findPrivilegesThatGrant just checking if privileges which can grant the action regardless of the  request and authentication context."

This reverts commit 72b9aefe

* Revert "To avoid ambiguity (as cluster and index policies may have the same name) changing implementation to have to separate policies for `index_privileges` and `cluster_privileges`. If both are set for the same policy, throw the IllegalArgumentException."

This reverts commit 7dd8fe7d

* Revert "To avoid ambiguity (as cluster and index policies may have the same name) changing implementation to have to separate policies for `index_privileges` and `cluster_privileges`. If both are set for the same policy, throw the IllegalArgumentException."

This reverts commit cb5bc09c

* Revert "Support audit ignore policy by index privileges"

This reverts commit a918da10

* Support audit ignore policy by actions

Getting back to action filtering

* Support audit ignore policy by actions

Cleaning up some tests

* Support audit ignore policy by actions

Cleaning up some tests

Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
2021-03-01 18:44:57 +01:00
..
aggregations [DOCS] Update example for serial_diff agg (#69635) 2021-03-01 08:37:29 -05:00
analysis [DOCS] Fix typos for duplicate words (#69125) 2021-02-17 10:34:20 -05:00
autoscaling [DOCS] Reviews ML decider conceptual docs (#69524) 2021-03-01 09:56:39 +01:00
cat Support include_unloaded_segments in node stats (#69682) 2021-03-01 17:18:47 +01:00
ccr Fix docs for behaviour of CCR after lease expiry (#69114) 2021-02-17 13:26:48 +00:00
cluster Support include_unloaded_segments in node stats (#69682) 2021-03-01 17:18:47 +01:00
commands Remove support of creating CA on the fly when generating certificates (#65590) 2020-12-16 13:54:32 +11:00
data-streams [DOCS] Update priority recommendation for index templates (#69006) 2021-02-16 10:53:28 -05:00
docs [DOCS] Fix typos for duplicate words (#69125) 2021-02-17 10:34:20 -05:00
eql [DOCS] Add fields parameter to EQL search API (#69634) 2021-03-01 12:00:27 -05:00
graph [DOCS] Fix API titles (#67475) 2021-01-13 15:15:37 -05:00
high-availability Adjust resiliency docs for searchable snapshots (#67630) 2021-01-19 17:40:49 +00:00
how-to [DOCS] Remove performance warning for script fields (#69309) 2021-02-22 10:05:49 -05:00
ilm Generate random rollup index names for RollupILMAction (#69237) 2021-02-24 12:31:36 -08:00
images [DOCS] Update ILM tutorial docs for UI changes (#69189) 2021-02-19 12:56:58 -05:00
index-modules [DOCS] Fix some typos in docs (#66672) 2020-12-21 12:45:51 +02:00
indices Note that forcemerges now run in parallel in docs (#69688) 2021-03-01 13:15:24 +00:00
ingest [DOCS] Adds model alias to inference processor and agg (#69576) 2021-02-24 13:12:39 -08:00
licensing [DOCS] Fix case for 'Boolean' (#64299) 2020-10-29 09:04:43 -04:00
mapping [DOCS] Remove beta admonition for runtime fields. (#69550) 2021-02-24 11:35:11 -05:00
migration [DOCS] Remove outdated default distro refs (#69465) 2021-02-23 12:26:57 -05:00
ml [ML] adding new _preview endpoint for data frame analytics (#69453) 2021-03-01 12:25:50 -05:00
modules [DOCS] Fix typo (#69654) 2021-03-01 09:34:56 -05:00
monitoring [DOCS] Fix typos for duplicate words (#69125) 2021-02-17 10:34:20 -05:00
query-dsl [DOCS] Note case_sensitive param was added in 7.10 (#69405) (#69466) 2021-02-23 13:12:28 -05:00
release-notes Fix range query on date fields for number inputs (#63692) 2020-12-01 18:49:50 +01:00
repositories-metering-api [DOCS] Fix name of cluster_version parameter (#69615) 2021-03-01 08:54:47 -05:00
rest-api [ML] Expand usage stats for data frame analytics and trained models (#69477) 2021-02-24 15:45:26 +02:00
rollup [DOCS] Fix capitalization for Query DSL (#69236) 2021-02-18 18:57:19 -05:00
scripting [DOCS] Fix ingest script compilation rate and cache size (#61468) 2020-08-24 10:26:38 -04:00
search [DOCS] Add fields parameter to EQL search API (#69634) 2021-03-01 12:00:27 -05:00
searchable-snapshots Document searchable snapshots supported repos (#69508) 2021-02-24 09:02:16 +00:00
settings Support audit ignore policy by actions (#67477) 2021-03-01 18:44:57 +01:00
setup Introduce ES_JAVA_HOME (#68954) 2021-02-17 12:41:23 -05:00
slm [DOCS] Fix SLM security privilege wording (#68238) 2021-01-29 16:48:14 -05:00
snapshot-restore URL repos and searchable snapshots don't mix (#69197) 2021-02-18 17:50:50 +00:00
sql SQL: [Docs] Use the most common yyyy year pattern in examples (#69407) 2021-02-23 13:48:03 +01:00
tab-widgets [DOCS] Improve docs for Windows DOS/UNC paths in path.* settings (#64668) 2020-11-09 10:36:48 -05:00
text-structure/apis [ML] [DOCS] update find-structure reference docs (#67586) 2021-01-15 12:19:38 -05:00
transform [DOCS] Adds new screenshot to Transform tutorial (#69194) 2021-02-23 15:23:51 +01:00
upgrade [DOCS] Make cat API verbose query param explicit (#67300) 2021-01-11 17:19:23 -05:00
vectors [DOCS] Update my-index examples (#60132) 2020-07-27 14:46:39 -04:00
aggregations.asciidoc [DOCS] Rewrite aggs overview (#64318) 2020-10-30 08:39:38 -04:00
analysis.asciidoc [DOCS] Swap [float] for [discrete] (#60124) 2020-07-23 11:48:22 -04:00
api-conventions.asciidoc Expand and consolidate networking docs (#68051) 2021-02-01 13:06:20 +00:00
cat.asciidoc [DOCS] Fix cat API list order (#67486) 2021-01-13 16:41:44 -05:00
cluster.asciidoc [DOCS] Reword node roles docs (#69301) 2021-02-23 11:32:46 -05:00
data-management.asciidoc [DOCS] Move Kibana index mgmt docs to ES (#64380) 2020-10-30 09:14:52 -04:00
data-rollup-transform.asciidoc [DOCS] Changes level offset of transform pages (#60066) 2020-07-22 10:55:48 -07:00
datatiers.asciidoc Add the frozen tier node role and ILM phase (#68605) 2021-02-05 14:38:13 -07:00
dependencies-versions.asciidoc [DOCS] Added appendix to show dependencies (#67962) 2021-01-26 16:16:05 -08:00
docs.asciidoc [DOCS] Remove heading offsets for REST APIs (#44568) 2019-07-19 14:35:36 -04:00
frozen-indices.asciidoc [DOCS] Make cat API verbose query param explicit (#67300) 2021-01-11 17:19:23 -05:00
getting-started.asciidoc [DOCS] Make cat API verbose query param explicit (#67300) 2021-01-11 17:19:23 -05:00
glossary.asciidoc [DOCS] Add runtime field to glossary (#69204) 2021-02-18 15:00:07 -05:00
gs-index.asciidoc [DOCS] Adding index file for GS "mini book". 2017-07-18 13:44:08 -07:00
high-availability.asciidoc [DOCS] Add docs for designing resilient clusters (#47233) 2020-06-05 11:48:44 -04:00
how-to.asciidoc [DOCS] Document shard sizing guide (#61942) 2020-09-28 09:24:40 -04:00
index-extra-title-page.html [DOCS] Add index-extra-title-page.html for direct HTML migration (#50189) 2019-12-13 12:44:12 -05:00
index-modules.asciidoc [DOCS] Note index.number_of_routing_shards affects doc distribution (#69541) 2021-02-24 10:31:01 -05:00
index.asciidoc [DOCS] Added appendix to show dependencies (#67962) 2021-01-26 16:16:05 -08:00
index.x.asciidoc [DOCS] Removes redundant index.asciidoc files (#30707) 2018-05-18 11:05:40 -07:00
indices.asciidoc [DOCS] Mark template exists API as legacy (#67286) 2021-01-11 14:14:44 -05:00
ingest.asciidoc [DOCS] Fix instructions for dedicated ingest node (#69179) 2021-02-18 08:53:20 -05:00
intro.asciidoc [DOCS] Update rollup xrefs (#66799) 2020-12-23 13:49:15 -05:00
links.asciidoc [DOCS] Fix security links in machine learning APIs (#60098) 2020-07-23 12:14:56 -07:00
mapping.asciidoc Minor revision missed in merge. (#67282) 2021-01-11 13:50:06 -05:00
query-dsl.asciidoc [DOCS] Add redirects for wildcard and constant keyword (#61815) 2020-09-01 15:32:35 -04:00
redirects.asciidoc Expand and consolidate networking docs (#68051) 2021-02-01 13:06:20 +00:00
release-notes.asciidoc [DOCS] Adds placeholders for v8 highlights, breaking changes, release notes (#38641) 2019-02-08 15:48:42 -08:00
scripting.asciidoc [DOCS] Swap [float] for [discrete] (#60124) 2020-07-23 11:48:22 -04:00
search.asciidoc Introduce eql search status API (#68065) 2021-02-11 09:30:13 -05:00
setup.asciidoc Introduce ES_JAVA_HOME (#68954) 2021-02-17 12:41:23 -05:00
upgrade.asciidoc [DOCS] Add tip for upgrade assistant (#55027) 2020-05-05 09:49:22 -04:00