Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Omit runtime fields from Role Management FLS field selector #78329

Closed
legrego opened this issue Sep 23, 2020 · 1 comment · Fixed by #78330
Closed

Omit runtime fields from Role Management FLS field selector #78329

legrego opened this issue Sep 23, 2020 · 1 comment · Fixed by #78330
Labels
enhancement New value added to drive a business result Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more!

Comments

@legrego
Copy link
Member

legrego commented Sep 23, 2020

Runtime fields are not in scope for FLS, and should therefore be excluded from the FLS dropdown when suggesting fields to grant/deny access to.

Users who wish to prevent access to runtime fields should instead deny access to the source fields which make up each runtime field.

@legrego legrego added Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more! enhancement New value added to drive a business result labels Sep 23, 2020
@elasticmachine
Copy link
Contributor

Pinging @elastic/kibana-security (Team:Security)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement New value added to drive a business result Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more!
Projects
None yet
Development

Successfully merging a pull request may close this issue.

2 participants