403 Forbidden error on /api/saved_objects/_find?fields=title&per_page=10000&type=index-pattern

Versions (relevant - OpenSearch/Dashboard/Server OS/Browser):

  • OpenSearch: 2.16.0
  • Dashboard: 2.16.0
  • Server OS: Ubuntu 22.04
  • Browser: Chrome 127.0.6533.88

Describe the issue:
The Discover page is blank in OpenSearch Dashboards with a 403 Forbidden error on /api/saved_objects/_find?fields=title&per_page=10000&type=index-pattern with the following message:

no permissions for [indices:data/read/search] and User [name=test, backend_roles=[], requestedTenant=null]: security_exception: [security_exception] Reason: no permissions for [indices:data/read/search] and User [name=test, backend_roles=[], requestedTenant=null]

The Discover page should show the data.

Configuration:
Follow all the steps of the following Example: Defining users and roles - OpenSearch Documentation

Even after adding indices:data/read/search + indices:data/read/search* + indices:data/read/search/template in both Cluster and Index permissions, the error occurs.

Hi @sebtheone,

Could you please share the output of:

curl --insecure -u test:<password> -XGET https://<OS_node>:9200/_plugins/_security/authinfo?pretty

Thnaks,
mj