Open legrego opened 1 week ago
Pinging @elastic/kibana-security (Team:Security)
Heya @MichaelMarcialis, we could use your expertise on some design options for remote cluster privileges. The Role Management interface will support the new remote cluster and remote index privileges, in order to enable the new security model for CCR/CCS: https://www.elastic.co/guide/en/elasticsearch/reference/master/remote-clusters-api-key.html#remote-clusters-privileges-api-key.
To support this, we've added a new set of input fields to allow adding multiple remote cluster privileges, and multiple remote index privileges:
I apologize for not involving you sooner. The request to add each of these came to us at separate times, and individually we didn't feel they required design input given their relative simplicity.
We were discussing some options as a team, and wanted to get your thoughts:
Leave the input fields as shown in the screenshot.
Switch the order of Remote Index and Remote Cluster inputs, so that it is consistent with the traditional cluster and index privileges. There are a few orders we could consider
Current Ordering:
Proposed Ordering A (swap remote cluster/remote index):
Proposed Ordering B (group cluster together; group index together):
The team tended to favor A
over B
.
The new remote privileges reside within the Elasticsearch
panel of the form. We could add a new top-level panel for remote privileges.
Current Layout:
Proposed Layout:
Feel free to suggest something else we haven't considered.
I am more than happy to discuss over zoom if that would be helpful. I wrote this all out to consolidate & record our other discussions.
A few followup enhancements to the role management screen to better support RCS 2.0. Here's a video of the current implementation, as implemented via https://github.com/elastic/kibana/issues/182035 / https://github.com/elastic/kibana/pull/182377
https://github.com/elastic/kibana/assets/165678770/d3cf8b9c-e83d-4ace-ba2e-f8e028977f2d
I propose:
Remote Index Privileges
andRemote Cluster Privileges
, to be more consistent with the local Cluster and Index privileges.Remove Cluster Privileges
to align with the phrasing used for local cluster privileges:Control access to the data in remote clusters
should readManage the actions this role can perform in remote clusters