[Security] Support invalidate API keys by multiple IDs #79714

jen-huang · 2020-10-06T17:02:01Z

Describe the feature:
Elasticsearch now supports invalidating API keys by multiple IDs, using a new ids field: elastic/elasticsearch#63224

We should support this in the authentication interface, where methods to invalidate by single key ID already exists.

Describe a specific use case for the feature:
This is useful for Fleet where sometimes we need to invalidate up to 20,000 keys from a single user action. Currently we do this by batching single invalidate requests. Once this is available, we can just send one request.

The text was updated successfully, but these errors were encountered:

elasticmachine · 2020-10-06T17:02:04Z

Pinging @elastic/kibana-security (Team:Security)

jen-huang · 2021-01-07T16:38:52Z

Closed by #87401.

jen-huang added Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more! enhancement New value added to drive a business result Feature:Security/Authentication Platform Security - Authentication labels Oct 6, 2020

This was referenced Nov 10, 2020

Used SO for saving the API key IDs that should be deleted #82211

Merged

[Alerting] Replace single invalidateApiKey request with the batch #83224

Closed

jen-huang closed this as completed Jan 7, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Security] Support invalidate API keys by multiple IDs #79714

[Security] Support invalidate API keys by multiple IDs #79714

jen-huang commented Oct 6, 2020

elasticmachine commented Oct 6, 2020

jen-huang commented Jan 7, 2021

[Security] Support invalidate API keys by multiple IDs #79714

[Security] Support invalidate API keys by multiple IDs #79714

Comments

jen-huang commented Oct 6, 2020

elasticmachine commented Oct 6, 2020

jen-huang commented Jan 7, 2021