Security APIs
editSecurity APIs
editTo use the security APIs, you must set xpack.security.enabled
to true
in
the elasticsearch.yml
file.
You can use the following APIs to perform security activities.
Application privileges
editYou can use the following APIs to add, update, retrieve, and remove application privileges:
Role mappings
editYou can use the following APIs to add, remove, update, and retrieve role mappings:
Roles
editYou can use the following APIs to add, remove, update, and retrieve roles in the native realm:
Tokens
editYou can use the following APIs to create and invalidate bearer tokens for access without requiring basic authentication:
API Keys
editYou can use the following APIs to create, retrieve and invalidate API keys for access without requiring basic authentication:
Users
editYou can use the following APIs to add, remove, update, or retrieve users in the native realm:
Service Accounts
editYou can use the following APIs to list service accounts and manage the service tokens:
OpenID Connect
editYou can use the following APIs to authenticate users against an OpenID Connect authentication realm when using a custom web application other than Kibana
SAML
editYou can use the following APIs to authenticate users against a SAML authentication realm when using a custom web application other than Kibana