创建角色声明其拥有的权限
POST _security/role/events_admin
{
"indices" : [
{
"names" : [ "events*" ],
"privileges" : [ "all" ]
},
{
"names" : [ ".kibana*" ],
"privileges" : [ "manage", "read", "index" ]
}
]
}
创建用户并与角色进行关联
POST _security/user/<USERNAME>
{
"password" : "<PASSWORD>",
"full_name" : "John Doe",
"email" : "wy@example.com",
"roles" : [ "events_admin" ]
}'
重置用户密码
PUT /_xpack/security/user/<USERNAME>/_password
{
"password" : "elastic123"
}
查询、禁用、启用、删除用户
GET /_xpack/security/user
GET /_xpack/security/user/<username>
GET /_xpack/security/user/my_user,ctr
PUT /_xpack/security/user/<username>/_disable
PUT /_xpack/security/user/<username>/_enable
DELETE /_xpack/security/user/<username>
GET _xpack/security/user/_has_privileges