Skip to content

Instantly share code, notes, and snippets.

@noerw

noerw/READM.md

Created August 31, 2018 11:04
Show Gist options
  • Save noerw/3489ae337090e205c57113286be79667 to your computer and use it in GitHub Desktop.
Save noerw/3489ae337090e205c57113286be79667 to your computer and use it in GitHub Desktop.
Download ZIP
Kibana 6.4 read only access
Raw
READM.md

Kibana 6.4 read only access

warning: this list of endpoints was discovered empirically

in case you want to restrict Kibana access to read only, whitelist the following endpoints:

  • GET /app/kibana
  • GET /bundles/*
  • GET /plugins/*
  • GET /api/saved_objects/_find
  • GET /api/console/api_server
  • POST /api/saved_objects/_bulk_get
  • POST /elasticsearch/_msearch

or - less secure, but less errorprone - just block the following endpoints:

  • all of /api/logstash/*
  • all of /api/security/*
  • all of /api/saved_objects/* except for
    • POST /api/saved_objects/_bulk_get
    • GET /api/saved_objects/*
  • /api/console/proxy
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment