API keys do not reflect the need for read_pipeline (#26466) (#26581)

As discussed in the PR #26465 the docs should reflect that read_pipeline is needed when using modules. Users usually just copy and paste the JSON payload and might experience failures when running any beat with modules. Co-authored-by: Philipp Kahr <[email protected]>
elastic · Jun 29, 2021 · 7de4b31 · 7de4b31
1 parent 555a7f5
commit 7de4b31
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/libbeat/docs/security/api-keys.asciidoc b/libbeat/docs/security/api-keys.asciidoc
@@ -29,7 +29,7 @@ POST /_security/api_key
   "name": "{beat_default_index_prefix}_host001", <1>
   "role_descriptors": {
     "{beat_default_index_prefix}_writer": { <2>
-      "cluster": ["monitor", "read_ilm"],
+      "cluster": ["monitor", "read_ilm", "read_pipeline"],
       "index": [
         {
           "names": ["{beat_default_index_prefix}-*"],