Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Guide user on best practices when managing users that have API keys #47648

Open
cjcenizal opened this issue Oct 9, 2019 · 1 comment
Open

Guide user on best practices when managing users that have API keys #47648

cjcenizal opened this issue Oct 9, 2019 · 1 comment
Labels
enhancement New value added to drive a business result Feature:Users/Roles/API Keys Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more!
Projects
Security

Comments

@cjcenizal
Copy link
Contributor

cjcenizal commented Oct 9, 2019
edited

This relates to the new API Keys app (#45740).

Per convo with @bmcconaghy, if there’s a change to a user in the Users UI, we can check to see if the user has any API keys and, if they do, we can surface a suggestion in the UI to check their API keys and make sure they don't need to be revoked (invalidated).

We can link to the docs (so they can learn about best practices when managing users in conjunction with their API keys) and deep-link directly to the API Keys table. The deep-link can contain a query parameter which will be applied to the table to pre-filter its contents to show only API keys that belong to the user in question.
@cjcenizal cjcenizal added Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more! enhancement New value added to drive a business result Feature:Users/Roles/API Keys labels Oct 9, 2019
@elasticmachine
Copy link
Contributor

Pinging @elastic/kibana-security (Team:Security)

@kobelb kobelb added this to Backlog in Security Oct 9, 2019
@exalate-issue-sync exalate-issue-sync bot added impact:low Addressing this issue will have a low level of impact on the quality/strength of our product. loe:small Small Level of Effort labels Aug 5, 2021
@legrego legrego removed EnableJiraSync loe:small Small Level of Effort impact:low Addressing this issue will have a low level of impact on the quality/strength of our product. labels Aug 18, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New value added to drive a business result Feature:Users/Roles/API Keys Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more!
Projects
No open projects
Security
Backlog
Milestone
No milestone
Development

No branches or pull requests
3 participants
@cjcenizal @legrego @elasticmachine