Hi!
We are trying to configure our elastic cluster (6.6 with searchguard 6.6 installed) with our organization's ldap server.
Each document in our cluster contains a field called "authorized": a list with user/group names authorized to view the document.
Is it possible to create rules based on our ldap, so that each query will take into account the the clients user and check if it is contained in the authorized list? (contained means that it can appear there explicitly or that he is a member of group there).
{
authorized: ['my_group']
...
}