From 76a013ea3069dd7e6e7dc7c0784c2520f31a21de Mon Sep 17 00:00:00 2001 From: Julia Bardi Date: Wed, 5 Feb 2025 12:35:41 +0100 Subject: [PATCH 1/3] added privileges for fleet-synced-integrations --- .../authz/store/KibanaOwnedReservedRoleDescriptors.java | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/x-pack/plugin/core/src/main/java/org/elasticsearch/xpack/core/security/authz/store/KibanaOwnedReservedRoleDescriptors.java b/x-pack/plugin/core/src/main/java/org/elasticsearch/xpack/core/security/authz/store/KibanaOwnedReservedRoleDescriptors.java index fcd1ba54a8de2..3a2c0a49e52e3 100644 --- a/x-pack/plugin/core/src/main/java/org/elasticsearch/xpack/core/security/authz/store/KibanaOwnedReservedRoleDescriptors.java +++ b/x-pack/plugin/core/src/main/java/org/elasticsearch/xpack/core/security/authz/store/KibanaOwnedReservedRoleDescriptors.java @@ -224,6 +224,11 @@ static RoleDescriptor kibanaSystem(String name) { RoleDescriptor.IndicesPrivileges.builder().indices("metrics-fleet_server*").privileges("all").build(), // Fleet reads output health from this index pattern RoleDescriptor.IndicesPrivileges.builder().indices("logs-fleet_server*").privileges("read", "delete_index").build(), + // Fleet creates and writes this index for sync integrations feature + RoleDescriptor.IndicesPrivileges.builder() + .indices("fleet-synced-integrations") + .privileges("create_index", "manage", "read", "write") + .build(), // Legacy "Alerts as data" used in Security Solution. // Kibana user creates these indices; reads / writes to them. RoleDescriptor.IndicesPrivileges.builder() From b73bae80f8bf8cbb39d988293e84e8ea968a75db Mon Sep 17 00:00:00 2001 From: Julia Bardi <90178898+juliaElastic@users.noreply.github.com> Date: Fri, 7 Feb 2025 15:03:05 +0100 Subject: [PATCH 2/3] Update index-templates.asciidoc --- docs/reference/indices/index-templates.asciidoc | 3 +++ 1 file changed, 3 insertions(+) diff --git a/docs/reference/indices/index-templates.asciidoc b/docs/reference/indices/index-templates.asciidoc index ed6a8e89040f2..ad9ec6095439b 100644 --- a/docs/reference/indices/index-templates.asciidoc +++ b/docs/reference/indices/index-templates.asciidoc @@ -70,6 +70,9 @@ ensures your template is applied instead of the built-in template for `logs-*-*`. - To avoid naming collisions with built-in and Fleet-managed index templates, avoid using `@` as part of the name of your own index templates. + +- Fleet uses index `fleet-synced-integrations` for a feature, avoid using this name to avoid naming collisions. + **** [discrete] From 67f8d40245d49036ac9b73b323c02eb8d9343b3a Mon Sep 17 00:00:00 2001 From: Julia Bardi Date: Fri, 7 Feb 2025 16:49:58 +0100 Subject: [PATCH 3/3] Revert "Update index-templates.asciidoc" This reverts commit b73bae80f8bf8cbb39d988293e84e8ea968a75db. --- docs/reference/indices/index-templates.asciidoc | 3 --- 1 file changed, 3 deletions(-) diff --git a/docs/reference/indices/index-templates.asciidoc b/docs/reference/indices/index-templates.asciidoc index ad9ec6095439b..ed6a8e89040f2 100644 --- a/docs/reference/indices/index-templates.asciidoc +++ b/docs/reference/indices/index-templates.asciidoc @@ -70,9 +70,6 @@ ensures your template is applied instead of the built-in template for `logs-*-*`. - To avoid naming collisions with built-in and Fleet-managed index templates, avoid using `@` as part of the name of your own index templates. - -- Fleet uses index `fleet-synced-integrations` for a feature, avoid using this name to avoid naming collisions. - **** [discrete]