Security APIs

You can use the following APIs to perform security activities.

• Authenticate
• Clear cache
• Delegate PKI authentication
• Has privileges
• SSL certificate
• Get builtin privileges

Application privileges

You can use the following APIs to add, update, retrieve, and remove application privileges:

• Create or update privileges
• Clear privileges cache
• Delete privileges
• Get privileges

Role mappings

You can use the following APIs to add, remove, update, and retrieve role mappings:

• Create or update role mappings
• Delete role mappings
• Get role mappings

Roles

You can use the following APIs to add, remove, update, and retrieve roles in the native realm:

• Create or update roles
• Clear roles cache
• Delete roles
• Get roles

Tokens

You can use the following APIs to create and invalidate bearer tokens for access without requiring basic authentication:

• Get token
• Invalidate token

API Keys

You can use the following APIs to create, retrieve and invalidate API keys for access without requiring basic authentication:

• Create API Key
• Get API Key
• Invalidate API Key

Users

You can use the following APIs to add, remove, update, or retrieve users in the native realm:

• Create or update users
• Change passwords
• Delete users
• Disable users
• Enable users
• Get users

OpenID Connect

You can use the following APIs to authenticate users against an OpenID Connect authentication realm when using a custom web application other than Kibana

• Prepare an authentication request
• Submit an authentication response
• Logout an authenticated user

SAML

You can use the following APIs to authenticate users against a SAML authentication realm when using a custom web application other than Kibana

• Prepare an authentication request
• Submit an authentication response
• Logout an authenticated user
• Submit a logout request from the IdP