Security

Lessons in this group, roughly in build order:

• authentication-users — Authentication is how Elasticsearch proves who is making a request; the security feature ships with a…
• role-based-access-control-rbac — RBAC decides what an authenticated principal may do; roles bundle cluster privileges, per-index…
• tls-encryption — TLS encrypts and authenticates two distinct channels in a cluster — the HTTP/REST layer clients talk to,…
• api-keys — An API key is a long-lived, revocable credential issued by the cluster that authenticates a request…
• field-document-level-security — Field-level security (FLS) and document-level security (DLS) extend a role beyond which indices to which…
• audit-logging — Audit logging records who did what to the cluster — authentication outcomes, access grants/denials, and…