# All cluster rights
# All operations on all indices
# Run as all users
test-admin:
cluster:
- all
indices:
- names: '*'
privileges: [ all ]
run_as:
- '*'
user1:
- cluster:monitor/main
- names: ['index-user1', 'index' ]
privileges:
- read
- write
- create_index
- indices:admin/refresh
user2:
- names: [ 'index-user2', 'index' ]
user_dls:
- names:
- 'index*'
field_security:
grant:
- baz
query: |
{
"bool": {
"must_not": [
"match": {
"foo": "bar"
}
]
