Mike - Hi all, we had an incident recently wher...
Hi all, we had an incident recently where ABAC was mistakenly disabled on our cluster so I'd like to setup a healthcheck of some sorts to monitor this and ensure it's working as expected. I've thought about 2 things, calling the
api/rest/2.0/system/config-overrides and checking the status of the flag or preferably calling the api/rest/2.0/searchdata and ensuring the data returned is limited to the specified ABAC filters. I was just wondering if there was a better way to do this? Thanks!1 Reply
Hi @Mike :
Apologies for the oversight in enabling the GA feature flag and disabling the BETA feature flag, which resulted in the incident.
To address this, as you rightly pointed out, these APIs will suffice for monitoring. Additionally, once the GA feature is enabled, we can update the monitoring script with the new filter_rules.
Thank you for your understanding!