[Fleet] Change permissions for Fleet enroll role (#85802)

* Add APM traces index names to Fleet enroll role * Removes fleet permissions for `events-*` as they became obsolete fixes #85761
2020-12-15 09:31:39 +01:00 · 2020-12-15 09:31:39 +01:00 · 98308f8680
parent ffe29f769a
commit 98308f8680
3 changed files with 4 additions and 4 deletions
--- a/x-pack/plugins/fleet/server/services/api_keys/index.ts
+++ b/x-pack/plugins/fleet/server/services/api_keys/index.ts
@ -24,7 +24,7 @@ export async function generateOutputApiKey(
      cluster: ['monitor'],
      index: [
        {
-          names: ['logs-*', 'metrics-*', 'events-*', '.ds-logs-*', '.ds-metrics-*', '.ds-events-*'],
+          names: ['logs-*', 'metrics-*', 'traces-*', '.ds-logs-*', '.ds-metrics-*', '.ds-traces-*'],
          privileges: ['write', 'create_index', 'indices:admin/auto_create'],
        },
      ],
--- a/x-pack/plugins/fleet/server/services/setup.ts
+++ b/x-pack/plugins/fleet/server/services/setup.ts
@ -139,7 +139,7 @@ export async function setupFleet(
      cluster: ['monitor', 'manage_api_key'],
      indices: [
        {
-          names: ['logs-*', 'metrics-*', 'events-*', '.ds-logs-*', '.ds-metrics-*', '.ds-events-*'],
+          names: ['logs-*', 'metrics-*', 'traces-*', '.ds-logs-*', '.ds-metrics-*', '.ds-traces-*'],
          privileges: ['write', 'create_index', 'indices:admin/auto_create'],
        },
      ],
--- a/x-pack/test/fleet_api_integration/apis/agents_setup.ts
+++ b/x-pack/test/fleet_api_integration/apis/agents_setup.ts
@ -62,10 +62,10 @@ export default function (providerContext: FtrProviderContext) {
            names: [
              'logs-*',
              'metrics-*',
-              'events-*',
+              'traces-*',
              '.ds-logs-*',
              '.ds-metrics-*',
-              '.ds-events-*',
+              '.ds-traces-*',
            ],
            privileges: ['write', 'create_index', 'indices:admin/auto_create'],
            allow_restricted_indices: false,