Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add index-level privilege for force merge #29702

Closed
elasticmachine opened this issue Feb 10, 2017 · 1 comment
Closed

Add index-level privilege for force merge #29702

elasticmachine opened this issue Feb 10, 2017 · 1 comment
Labels
>enhancement :Security/Authorization Roles, Privileges, DLS/FLS, RBAC/ABAC Team:Security Meta label for security team

Comments

@elasticmachine
Copy link
Collaborator

Original comment by @ppf2:

Force merge can be dangerous. Sometimes even admins have to be blocked from running it, and only allow super/smarter admins to run it. With the move to high level privileges, force merge action is now part of a broader manage privilege at the index level. Perhaps we can create force_merge privilege and remove it from the generic manage privilege so that they have to grant it explicitly for specific users?
@elasticmachine elasticmachine added :Security/Authorization Roles, Privileges, DLS/FLS, RBAC/ABAC >enhancement discuss labels Apr 25, 2018
@elasticmachine elasticmachine mentioned this issue Jun 15, 2018
Open
@rjernst rjernst added the Team:Security Meta label for security team label May 4, 2020
@albertzaharovits
Copy link
Contributor

Resolved in #50643

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
>enhancement :Security/Authorization Roles, Privileges, DLS/FLS, RBAC/ABAC Team:Security Meta label for security team
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@rjernst @albertzaharovits @elasticmachine @tomcallahan