Retrieves application privileges.
GET /_security/privilege
GET /_security/privilege/<application>
GET /_security/privilege/<application>/<privilege>
To check a user’s application privileges, use the has privileges API.
application
privilege
To use this API, you must have either:
manage_security
cluster privilege (or a greater privilege such as all
); or
The following example retrieves information about the read
privilege for the
app01
application:
GET /_security/privilege/myapp/read
A successful call returns an object keyed by application name and privilege name. If the privilege is not defined, the request responds with a 404 status.
{ "myapp": { "read": { "application": "myapp", "name": "read", "actions": [ "data:read/*", "action:login" ], "metadata": { "description": "Read access to myapp" } } } }
To retrieve all privileges for an application, omit the privilege name:
GET /_security/privilege/myapp/
To retrieve every privilege, omit both the application and privilege names:
GET /_security/privilege/