Skip to content

Commit

Permalink
Document "manage_api_key" cluster privilege
Browse files Browse the repository at this point in the history
Relates: elastic/elasticsearch#43728

Co-Authored-By: Lisa Cawley <lcawley@elastic.co>

Backport of: #395
  • Loading branch information
tvernum committed Jul 16, 2019
1 parent 3d49882 commit dbae451
Showing 1 changed file with 19 additions and 0 deletions.
19 changes: 19 additions & 0 deletions docs/en/stack/security/authorization/privileges.asciidoc
Original file line number Diff line number Diff line change
Expand Up @@ -22,6 +22,25 @@ This includes snapshotting, updating settings, and rerouting. It also includes
obtaining snapshot and restore status. This privilege does not include the
ability to manage security.

`manage_api_key`::
All security-related operations on {es} API keys including
{ref}/security-api-create-api-key.html[creating new API keys],
{ref}/security-api-get-api-key.html[retrieving information about API keys], and
{ref}/security-api-invalidate-api-key.html[invalidating API keys].
+
--
[NOTE]
======
* When you create new API keys, they will always be owned by the authenticated
user.
* When you have this privilege, you can invalidate your own API keys and those
owned by other users.
======

--

`manage_ccr`::
All {ccr} operations related to managing follower indices and auto-follow
patterns. It also includes the authority to grant the privileges necessary to
Expand Down

0 comments on commit dbae451

Please sign in to comment.