Merge "Add information about subunit index in logstash role"

2022-10-03 17:40:30 +00:00
parent 201e395d69 eee765f8c6
commit b409c4e667
1 changed files with 63 additions and 14 deletions
--- a/opensearch-config/README.md
+++ b/opensearch-config/README.md
@@ -40,23 +40,29 @@ Created roles:

 * Readonly role is creaded base on the [inscruction](https://opensearch.org/docs/latest/security-plugin/access-control/users-roles/#set-up-a-read-only-user-in-opensearch-dashboards)
 Details:
-  name: readonly
-  cluster permissions: cluster_composite_ops_ro, cluster:monitor/main
-  index permissions:
-    index: *
-    index permissions: read
-  tenant permissions:
-    tenant: global_tenant
+
+```
+name: readonly
+cluster permissions: cluster_composite_ops_ro, cluster:monitor/main
+index permissions:
+  index: *
+  index permissions: read
+tenant permissions:
+  tenant: global_tenant
+```

 * Logstash role (modify)
 Details:
-  name: logstash
-  cluster permissions: cluster_monitor, cluster_composite_ops, indices:admin/template/get, indices:admin/template/put, cluster:admin/ingest/pipeline/put, cluster:admin:ingest/pipeline/get
-  index permissions:
-    index: logstash-*, performance-*, *beat*
-    index permissions: crud, create_index
-  tenant permissions:
-    tenant: global_tenant
+
+```
+name: logstash
+cluster permissions: cluster_monitor, cluster_composite_ops, indices:admin/template/get, indices:admin/template/put, cluster:admin/ingest/pipeline/put, cluster:admin:ingest/pipeline/get
+index permissions:
+  index: logstash-*, performance-*, subunit-*, *beat*
+  index permissions: crud, create_index
+tenant permissions:
+  tenant: global_tenant
+```

 NOTE:
 The `cluster:monitor/main` role is required to use Python Opensearch client.
@@ -160,6 +166,49 @@ Policy ID: Delete data for performance index after 14 days
 }
 ```

+* For subunit-*
+
+Policy ID: Delete data for subunit index after 14 days
+
+```json
+{
+    "policy": {
+        "description": "Delete subunit data after 14 days",
+        "default_state": "hot",
+        "states": [
+            {
+                "name": "hot",
+                "actions": [],
+                "transitions": [
+                    {
+                        "state_name": "delete",
+                        "conditions": {
+                            "min_index_age": "14d"
+                        }
+                    }
+                ]
+            },
+            {
+                "name": "delete",
+                "actions": [
+                    {
+                        "delete": {}
+                    }
+                ],
+                "transitions": []
+            }
+        ],
+        "ism_template": [
+            {
+                "index_patterns": [
+                    "subunit-*"
+                ]
+            }
+        ]
+    }
+}
+```
+
 ## Advenced settings in Opensearch Dashboards

 There is only few changes applied comparing to default settings.