Stack Management UI - Users with monitor cluster privileges should be able to view Component Templates and Enrich Policies in Stack Management UI #178654
Original install method (e.g. download page, yum, from source, etc.):
Elastic Cloud
Describe the bug:
A user with the monitor cluster privilege is allowed to view Index Templates, Component Templates and Enrich policies. However, in the Stack Management UI, the user can view the Index Template but cannot view Component Templates nor Enrich Policies with the errors about missing permissions (manage_index_template and manage_enrich_policies, respectively).
Steps to reproduce:
Configure a new role with the monitor cluster privileges and all permissions on Kibana:
PUT _security/user/stack_management_ui_user
{
"password": "stack_management_ui_password",
"roles": ["stack_management_ui_role"]
}
Login into Kibana with the newly created user and open Stack Management > Index Management
Verify that index_templates are viewed but component_templates and enrich policies are not
Expected behavior:
A coherent behavior: either have users with the monitor cluster privilege should read access to index_templates, component_templates and enrich policies (preferred by me) or alternatively the users with this role are not allowed to view index templates as well
Kibana version: 8.12.2
Elasticsearch version: 8.12.2
Server OS version: N/A - Elastic Cloud
Browser version: Chrome 122.0.6261.112
Browser OS version: Windows 11
Original install method (e.g. download page, yum, from source, etc.): Elastic Cloud
Describe the bug: A user with the
monitor
cluster privilege is allowed to view Index Templates, Component Templates and Enrich policies. However, in the Stack Management UI, the user can view the Index Template but cannot view Component Templates nor Enrich Policies with the errors about missing permissions (manage_index_template
andmanage_enrich_policies
, respectively).Steps to reproduce:
Configure a new role with the monitor cluster privileges and all permissions on Kibana:
Create a new user assigned to that role:
Login into Kibana with the newly created user and open Stack Management > Index Management
Verify that index_templates are viewed but component_templates and enrich policies are not
Expected behavior:
A coherent behavior: either have users with the monitor cluster privilege should read access to index_templates, component_templates and enrich policies (preferred by me) or alternatively the users with this role are not allowed to view index templates as well
Screenshots (if relevant):
Errors in browser console (if relevant):
Provide logs and/or server output (if relevant):
Any additional context: