Skip to content

Security should audit when no indices are resolved #30026

New issue
New issue
Open
Open
Security should audit when no indices are resolved#30026
Labels
:Security/AuditX-Pack Audit logging>bugTeam:SecurityMeta label for security teamv2.1.0
@elasticmachine

Description

@elasticmachine
elasticmachine
opened on Feb 10, 2017

Original comment by @jaymode:

I was looking through our code due to a question asked by a user, https://discuss.elastic.co/t/curator-delete-indices-shield-permissions/29354/2 on the discussion forums and noticed that when we throw an IndexMissingException (user is not authorized for any indices) that we don't have a corresponding audit event. This should probably be a access_denied event...

Metadata

Metadata

Assignees

No one assigned

    Labels

    :Security/AuditX-Pack Audit logging>bugTeam:SecurityMeta label for security teamv2.1.0

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions